CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-25271 – OCPP Backend Configuration via Insecure Defaults
https://notcve.org/view.php?id=CVE-2025-25271
08 Jul 2025 — An unauthenticated adjacent attacker is able to configure a new OCPP backend, due to insecure defaults for the configuration interface. • https://certvde.com/de/advisories/VDE-2025-019 • CWE-1188: Initialization of a Resource with an Insecure Default •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2025-25270 – Remote Code Execution via Unauthenticated Configuration Manipulation
https://notcve.org/view.php?id=CVE-2025-25270
08 Jul 2025 — An unauthenticated remote attacker can alter the device configuration in a way to get remote code execution as root with specific configurations. This vulnerability allows network-adjacent attackers to bypass firewall rules and access another interface on affected installations of Phoenix Contact CHARX SEC-3150 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of firewall rules. The issue results from the use of rules that filter outboun... • https://certvde.com/de/advisories/VDE-2025-019 • CWE-913: Improper Control of Dynamically-Managed Code Resources •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-25269 – Local Privilege Escalation via Unauthenticated Command Injection
https://notcve.org/view.php?id=CVE-2025-25269
08 Jul 2025 — An unauthenticated local attacker can inject a command that is subsequently executed as root, leading to a privilege escalation. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Phoenix Contact CHARX SEC-3150 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration service, which listens on TCP port 5001 by default. The issue results from the lack of proper validation of a user-supplied... • https://certvde.com/de/advisories/VDE-2025-019 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-25268 – Unauthenticated Configuration Access via Exposed API Endpoint
https://notcve.org/view.php?id=CVE-2025-25268
08 Jul 2025 — An unauthenticated adjacent attacker can modify configuration by sending specific requests to an API-endpoint resulting in read and write access due to missing authentication. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Phoenix Contact CHARX SEC-3150 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration service, which listens on TCP port 5001 by default. The issue results from th... • https://certvde.com/de/advisories/VDE-2025-019 • CWE-306: Missing Authentication for Critical Function •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-24006 – Privilege Escalation via Insecure SSH Permissions
https://notcve.org/view.php?id=CVE-2025-24006
08 Jul 2025 — A low privileged local attacker can leverage insecure permissions via SSH on the affected devices to escalate privileges to root. • https://certvde.com/de/advisories/VDE-2025-014 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-24005 – Local Privilege Escalation via Vulnerable SSH Script
https://notcve.org/view.php?id=CVE-2025-24005
08 Jul 2025 — A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to root due to improper input validation. • https://certvde.com/de/advisories/VDE-2025-014 • CWE-20: Improper Input Validation •
CVSS: 5.6EPSS: 0%CPEs: 4EXPL: 0CVE-2025-24004 – USB-C Buffer Overflow via Display Interface in EV Charging Stations
https://notcve.org/view.php?id=CVE-2025-24004
08 Jul 2025 — A physical attacker with access to the device display via USB-C can send a message to the device which triggers an unsecure copy to a buffer resulting in loss of integrity and a temporary denial-of-service for the stations until they got restarted by the watchdog. • https://certvde.com/de/advisories/VDE-2025-014 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-24003 – MQTT OOB Write Vulnerability in EichrechtAgents of German EV Charging Stations
https://notcve.org/view.php?id=CVE-2025-24003
08 Jul 2025 — An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law, resulting in a loss of integrity for only EichrechtAgents and potential denial-of-service for these stations. • https://certvde.com/en/advisories/VDE-2025-014 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2025-24002 – MQTT DoS Vulnerability in German EV Charging Stations
https://notcve.org/view.php?id=CVE-2025-24002
08 Jul 2025 — An unauthenticated remote attacker can use MQTT messages to crash a service on charging stations complying with German Calibration Law, resulting in a temporary denial-of-service for these stations until they got restarted by the watchdog. • https://certvde.com/en/advisories/VDE-2025-014 • CWE-20: Improper Input Validation •
CVSS: 9.0EPSS: 0%CPEs: 4EXPL: 0CVE-2024-11497 – Phoenix Contact: CHARX-SEC3xxx Charge controllers vulnerable to privilege escalation
https://notcve.org/view.php?id=CVE-2024-11497
14 Jan 2025 — An authenticated attacker can use this vulnerability to perform a privilege escalation to gain root access. • https://cert.vde.com/en/advisories/VDE-2024-070 • CWE-732: Incorrect Permission Assignment for Critical Resource •