Lucene search

[email protected]CVE-2023-49956

HistoryDec 07, 2023 - 1:15 p.m.

CVE-2023-49956

2023-12-0713:15:07

[email protected]

web.nvd.nist.gov

cve-2023-49956

dalmann

ocpp

open charge point protocol

electric vehicles

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0005 Low

EPSS

Percentile

17.1%

JSON

An issue was discovered in Dalmann OCPP.Core before 1.3.0 for OCPP (Open Charge Point Protocol) for electric vehicles. A StopTransaction message with any random transactionId terminates active transactions.

Affected configurations

NVD

Node

dallmann-consultingopen_charge_point_protocolRange<1.3.0

CPENameOperatorVersion
dallmann-consulting:open_charge_point_protocoldallmann-consulting open charge point protocollt1.3.0

CPE	Name	Operator	Version
dallmann-consulting:open_charge_point_protocol	dallmann-consulting open charge point protocol	lt	1.3.0

References

github.com/dallmann-consulting/OCPP.Core/issues/34

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0005 Low

EPSS

Percentile

17.1%

JSON

Related for CVE-2023-49956

prion1 nvd1 osv1 cvelist1