| शीर्षक | Besen EV Charging Station BS20 EV Charger Embedded Malicious Code |
|---|
| विवरण | Finding 4: Unauthorized Firmware Installation via Spoofed OTA Updates
The device lacks robust validation of OTA firmware updates.
Although some built-in safeguards and validation checks exist, they can be bypassed.
An attacker can spoof the update server and deliver malicious firmware, which the device may accept as legitimate.
This could enable full device compromise and manipulation of charging behavior.
|
|---|
| स्रोत | ⚠️ https://github.com/carfeii/besen |
|---|
| उपयोगकर्ता | carfeii (UID 97470) |
|---|
| सबमिशन | 26/04/2026 06:13 PM (1 महीना पहले) |
|---|
| संयम | 24/05/2026 08:19 AM (28 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 365378 [Besen BS20 EV Charging Station तक 20260426 OTA Update Installation अधिकार वृद्धि] |
|---|
| अंक | 18 |
|---|