| タイトル | Besen EV Charging Station BS20 EV Charger Improper Authorization |
|---|
| 説明 | Finding 5: Unauthorized Tampering of Charger Commands
Commands between the mobile app and EV charger (via BLE or Wi-Fi) are transmitted without encryption or integrity protection.
An attacker within the same network can intercept, modify, and replay modified UDP packets to manipulate charging behavior, including altering duration, current, power, or start/stop states without proper authorization or knowledge of the EV charger owner. |
|---|
| ソース | ⚠️ https://github.com/carfeii/besen |
|---|
| ユーザー | carfeii (UID 97470) |
|---|
| 送信 | 2026年04月26日 18:15 (1 月 ago) |
|---|
| モデレーション | 2026年05月24日 08:19 (28 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 365379 [Besen BS20 EV Charging Station 迄 20260426 BLE/WiFi 弱い認証] |
|---|
| ポイント | 19 |
|---|