CVE-2026-26071 in everest-coreالمعلومات

الملخص

بحسب MITRE • 26/03/2026

EVerest is an EV charging software stack. Versions prior to 2026.02.0 have a data race leading to `std::string` concurrent access. with heap-use-after-free possible. This is triggered by EVCCID update (EV/ISO15118) and OCPP session/authorization events. Version 2026.02.0 contains a patch.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

مسؤول

GitHub M

حجز

10/02/2026

إفشاء

26/03/2026

الاعتدال

تمت الموافقة

إدخال

VDB-353647

EPSS

0.00134

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to stay up to date on a daily basis?

Enable the mail alert feature now!