An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law, resulting in a loss of integrity for only EichrechtAgents and potential denial-of-service for these stations.
2025-07-08T07:15:23.943
2025-07-11T14:36:12.323
Analyzed
CVSSv3.1: 8.2 (HIGH)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | phoenixcontact | charx_sec-3000_firmware | ≤ 1.6.5 | Yes |
Hardware | phoenixcontact | charx_sec-3000 | - | No |
Operating System | phoenixcontact | charx_sec-3050_firmware | ≤ 1.6.5 | Yes |
Hardware | phoenixcontact | charx_sec-3050 | - | No |
Operating System | phoenixcontact | charx_sec-3100_firmware | ≤ 1.6.5 | Yes |
Hardware | phoenixcontact | charx_sec-3100 | - | No |
Operating System | phoenixcontact | charx_sec-3150_firmware | ≤ 1.6.5 | Yes |
Hardware | phoenixcontact | charx_sec-3150 | - | No |