CVE-2024-23920 in Home FlexИнформация

Сводка

по MITRE • 31.01.2025

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ChargePoint Home Flex charging stations. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the onboardee module. The issue results from improper access control. An attacker can leverage this vulnerability to execute code in the context of root.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Резервировать

23.01.2024

Раскрытие

31.01.2025

Модерация

принято

Вход

VDB-273463

EPSS

0.00493

KEV

Нет

Деятельности

Очень низкий

Источники

Interested in the pricing of exploits?

See the underground prices here!