← back
CVE-2020-8007

CVE-2020-8007

CVSS 9.8 CRITICALEPSS 1.8%CWE-78
The pwrstudio web application of EV Charger (in the server in Circontrol Raption through 5.6.2) is vulnerable to OS command injection via three fields of the configuration menu for ntpserver0, ntpserver1, and pingip.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://circontrol.com/intelligent-charging-solutions/dc-chargers-series/raption-150/http://seclists.org/fulldisclosure/2024/Mar/33https://seclists.org/fulldisclosure/2024/Mar/33