top of page
perceptive_background_267k.jpg

EVerest is an EV charging software stack. Prior to version 2025.10.0, the use of the `assert` function to handle errors frequently causes the module to crash. T…

Published:

20 January 2026 at 23:00:00

Alert date:

21 January 2026 at 20:01:27

Source:

nvd.nist.gov

Click to open the original link from this advisory

Critical Infrastructure, Mobile & IoT, Emerging Technologies

CVE-2025-68134 affects EVerest, an electric vehicle charging software stack, prior to version 2025.10.0. The vulnerability stems from improper use of the assert function for error handling, causing module crashes. This is critical because when any module terminates, the manager shuts down all other modules and exits, resulting in denial of service. In environments where a manager handles multiple EVSE (Electric Vehicle Supply Equipment), this impacts other users as well. The issue has been resolved in version 2025.10.0.

Technical details

Mitigation steps:

Affected products:

EVerest

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2025-68134
https://github.com/EVerest/everest-core/security/advisories/GHSA-cxc5-rrj5-8pf3

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page