Vulnerability Description
An OS command injection vulnerability in Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier, may allow an unauthenticated remote attacker to execute arbitrary commands on the system via a specifically crafted arguments passed to the connectivity check feature.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hardy-Barth | Cph2 Echarge Firmware | <= 1.87.0 |
| Hardy-Barth | Cph2 Echarge | - |
Related Weaknesses (CWE)
References
- http://hardy.comNot Applicable
- https://www.offensity.com/en/blog/os-command-injection-in-cph2-charging-station-Exploit
- http://hardy.comNot Applicable
- https://www.offensity.com/en/blog/os-command-injection-in-cph2-charging-station-Exploit
FAQ
What is CVE-2023-46359?
CVE-2023-46359 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An OS command injection vulnerability in Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier, may allow an unauthenticated remote attacker to execute arbitrary commands on the system via a specif...
How severe is CVE-2023-46359?
CVE-2023-46359 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-46359?
Check the references section above for vendor advisories and patch information. Affected products include: Hardy-Barth Cph2 Echarge Firmware, Hardy-Barth Cph2 Echarge.