CVE-2023-49955
- Reference to the description:
- Description:
- An issue was discovered in Dalmann OCPP.Core before 1.2.0 for OCPP (Open Charge Point Protocol) for electric vehicles. It does not validate the length of the chargePointVendor field in a BootNotification message, potentially leading to server instability and a denial of service when processing excessively large inputs. NOTE: the vendor's perspective is "OCPP.Core is intended for use in a protected environment/network."
- Last updated date:
- 12/13/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 12/13/2023
- Reference url to background