CVE-2024-23920 in Home Flexthông tin

Tóm tắt

Bởi MITRE • 31/01/2025

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ChargePoint Home Flex charging stations. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the onboardee module. The issue results from improper access control. An attacker can leverage this vulnerability to execute code in the context of root.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Đặt trước

23/01/2024

Tiết lộ

31/01/2025

Kiểm duyệt

được chấp nhận

EPSS

0.00493

KEV

không

Các hoạt động

rất thấp

Nguồn

Want to know what is going to be exploited?

We predict KEV entries!