CVE-2024-4622

Vulnerability Description

If misconfigured, alpitronic Hypercharger EV charging devices can expose a web interface protected by authentication. If the default credentials are not changed, an attacker can use public knowledge to access the device as an administrator.

Related Weaknesses (CWE)

CWE-1392

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-130-02
https://industrydecarbonization.com/news/insecure-password-allowed-administrativ
https://www.cisa.gov/news-events/ics-advisories/icsa-24-130-02

FAQ

What is CVE-2024-4622?

CVE-2024-4622 is a documented vulnerability. If misconfigured, alpitronic Hypercharger EV charging devices can expose a web interface protected by authentication. If the default credentials are not changed, an attacker can use public knowledge...

How severe is CVE-2024-4622?

CVSS scoring is not yet available for CVE-2024-4622. Check NVD for updates.

Is there a patch for CVE-2024-4622?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.