Where
-Infinity
0

Trending

Last week
Last month
Last year

Versions

2025.12.1
2

Everest EVerestEVerest has RemoteStop Bypass via BCB Toggle Session Restart

Risk 36
Severity
5.2
First published (updated )
CVE-2026-33015

Everest EVerestEVerest has Delayed Authorization Response Bypasses Termination After RemoteStop

Risk 36
Severity
5.2
First published (updated )
CVE-2026-33014

Everest EVerestEVerest: MQTT Switch-Phases Command Data Race Causing Charger State Corruptio

Risk 54
Severity
8.2
First published (updated )
CVE-2026-33009

Everest EVerestEVerest: Charging Continues When WithdrawAuthorization Is Processed Before TransactionStarted

Risk 45
Severity
6.5
First published (updated )
CVE-2026-29044

Everest EVerestEVerest: ISO15118 session_setup use-after-free can crash EVSE process

Risk 43
Severity
5.5
First published (updated )
CVE-2026-27828
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Everest EVerestEVerest's ISO15118 update_energy_transfer_modes overflow can corrupt EVSE state

Risk 66
Severity
5.5
First published (updated )
CVE-2026-27816

Everest EVerestEVerest: ISO15118 session_setup payment options overflow can corrupt EVSE state

Risk 66
Severity
5.5
First published (updated )
CVE-2026-27815

Everest EvseManagerEVerest EvseManager phase-switch path has unsynchronized shared-state access race condition

Risk 29
Severity
4.2
First published (updated )
CVE-2026-27814

Everest EVerestEVerest has use-after-free in auth timeout timer via race condition

Risk 41
Severity
5.3
First published (updated )
CVE-2026-27813

Everest EVerestEVerest: OCPP201 startup event_queue lock mismatch leads to std::map/std::queue data race

Risk 55
Severity
7
First published (updated )
CVE-2026-26074
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Everest EVerestEVerest: OCPP 1.6 heap corruption caused by lock-free insertion in event_queue

Risk 35
Severity
5.9
First published (updated )
CVE-2026-26073

Everest EVerest OCPP 1.6 evse_soc_mapEVerest has race-condition-induced std::map corruption in OCPP 1.6 evse_soc_map

Risk 25
Severity
4.2
First published (updated )
CVE-2026-26072

Everest EVerestEVerest: OCPP 2.0.1 EVCCID Data Race Leads to Heap Use‑After‑Free

Risk 25
Severity
4.2
First published (updated )
CVE-2026-26071

Everest EVerestEVerest: OCPP 2.0.1 EV SoC Update Race Causes Charge Point Crash

Risk 27
Severity
4.6
First published (updated )
CVE-2026-26070

Everest EVerestEVerest has OOB via EVSE ID Indexing Mismatch in OCPP 2.0.1 UpdateAllowedEnergyTransferModes

Risk 43
Severity
7.5
First published (updated )
CVE-2026-26008
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Everest EVerestEVerest has stack buffer overflow in ifreq.ifr_name when interface name exceeds IFNAMSIZ

Risk 74
Severity
8.4
First published (updated )
CVE-2026-23995

Everest EVerestEVerest's unchecked SLAC payload length causes stack overflow in HomeplugMessage::setup_payload

Risk 79
Severity
8.8
First published (updated )
CVE-2026-22790

Everest EVerest IsoMuxEVerest has off-by-one stack buffer overflow in IsoMux certificate filename parsing

Risk 74
Severity
8.4
First published (updated )
CVE-2026-22593

Everest EVerestEvseV2G has sequence state validation bypass

Risk 19
Severity
5.3
EPSS
0.10%
First published (updated )
CVE-2026-24003

Everest EVerestEVerest vulnerable to null pointer dereference during DC_ChargeLoopRes document deserialization

Risk 43
Severity
7.4
First published (updated )
CVE-2025-68141
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Everest EVerestEVerest allows null session ID to bypass session ID verification

Risk 22
Severity
4.3
First published (updated )
CVE-2025-68140

Everest EVerestIn EVerest, by default, the EV is responsible for closing the connection if the module encounters an error during request processing

Risk 22
Severity
4.3
First published (updated )
CVE-2025-68139

Everest EVerestEVerest vulnerable to concatenation of strings literal and integers

Risk 19
Severity
4.2
EPSS
0.01%
First published (updated )
CVE-2026-23955

Everest EVerestEVerest's Integer Overflow and Signed to Unsigned conversion lead to either stack buffer overflow or infinite loop

Risk 73
Severity
8.4
First published (updated )
CVE-2025-68137

Everest EVerestEVerest's inadequate session handling can lead to memory-related errors or exhaustion of the operating system’s file descriptors, resulting in a denial of service

Risk 43
Severity
7.4
First published (updated )
CVE-2025-68136
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Everest EVerestEVerest's inadequate exception handling leads to denial of service

Risk 38
Severity
6.5
First published (updated )
CVE-2025-68135

Everest EVerestEVerest's use of assert functions can potentially lead to denial of service

Risk 43
Severity
7.4
First published (updated )
CVE-2025-68134

Everest EVerestEVerest has out-of-bounds read in DZG_GSH01 SLIP CRC parser that can crash powermeter driver

Risk 27
Severity
4.6
First published (updated )
CVE-2025-68132

Everest EVerestEVerest's unlimited connections can lead to DoS through operating system resource exhaustion

Risk 43
Severity
7.4
First published (updated )
CVE-2025-68133

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203