CVE-2025-55705
EVMAPA Insufficient Session Expiration
This vulnerability occurs when the system permits multiple simultaneous
connections to the backend using the same charging station ID. This can
result in unauthorized access, data inconsistency, or potential
manipulation of charging sessions. The lack of proper session management
and expiration control allows attackers to exploit this weakness by
reusing valid charging station IDs to establish multiple sessions
concurrently.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Productos afectados
EVMAPA · EVMAPA¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →