Vulnerabilidades em EVerest
33 resultadosCVE-2024-37310CRITICALEVerest has an integer overflow in the "v2g_incoming_v2gtp" function EPSS 0.7%CVE-2026-22790HIGHEVerest's unchecked SLAC payload length causes stack overflow in HomeplugMessage::setup_payloadEPSS 0.5%CVE-2026-26008HIGHEVerest has OOB via EVSE ID Indexing Mismatch in OCPP 2.0.1 UpdateAllowedEnergyTransferModesEPSS 0.4%CVE-2025-68133HIGHEVerest's unlimited connections can lead to DoS through operating system resource exhaustionEPSS 0.4%CVE-2026-26073MEDIUMEVerest: OCPP 1.6 heap corruption caused by lock-free insertion in event_queueEPSS 0.3%CVE-2025-68135MEDIUMEVerest's inadequate exception handling leads to denial of serviceEPSS 0.3%CVE-2026-29044MEDIUMEVerest: Charging Continues When WithdrawAuthorization Is Processed Before TransactionStartedEPSS 0.3%CVE-2026-27828MEDIUMEVerest: ISO15118 session_setup use-after-free can crash EVSE processEPSS 0.3%CVE-2026-27815MEDIUMEVerest: ISO15118 session_setup payment options overflow can corrupt EVSE stateEPSS 0.3%CVE-2025-68136HIGHEVerest's inadequate session handling can lead to memory-related errors or exhaustion of the operating system’s file descriptors, resulting in a denial of serviceEPSS 0.3%CVE-2026-24003MEDIUMEvseV2G has sequence state validation bypassEPSS 0.3%CVE-2025-68137HIGHEVerest's Integer Overflow and Signed to Unsigned conversion lead to either stack buffer overflow or infinite loopEPSS 0.3%CVE-2026-33009HIGHEVerest: MQTT Switch-Phases Command Data Race Causing Charger State CorruptioEPSS 0.2%CVE-2025-68141HIGHEVerest vulnerable to null pointer dereference during DC_ChargeLoopRes document deserializationEPSS 0.2%CVE-2025-68132LOWEVerest has out-of-bounds read in DZG_GSH01 SLIP CRC parser that can crash powermeter driverEPSS 0.2%CVE-2025-59398LOWThe OCPP implementation in libocpp before 0.26.2 allows a denial of service (EVerest crash) via JSON input larger than 255 characters, becauEPSS 0.2%CVE-2026-33015MEDIUMEVerest has RemoteStop Bypass via BCB Toggle Session RestartEPSS 0.2%CVE-2026-23995HIGHEVerest has stack buffer overflow in ifreq.ifr_name when interface name exceeds IFNAMSIZEPSS 0.2%CVE-2026-33014MEDIUMEVerest has Delayed Authorization Response Bypasses Termination After RemoteStopEPSS 0.2%CVE-2026-27816MEDIUMEVerest's ISO15118 update_energy_transfer_modes overflow can corrupt EVSE stateEPSS 0.2%