top of page
perceptive_background_267k.jpg

ePower epower.ie

Published:

3 maart 2026 om 12:00:00

Alert date:

3 maart 2026 om 18:03:35

Source:

cisa.gov

Click to open the original link from this advisory

Critical Infrastructure, Mobile & IoT

Multiple critical vulnerabilities discovered in ePower epower.ie charging stations affecting all versions. Vulnerabilities include missing authentication for critical functions, improper restriction of authentication attempts, insufficient session expiration, and insufficiently protected credentials. Successful exploitation could enable attackers to gain unauthorized administrative control over charging stations or disrupt charging services through denial-of-service attacks. The vulnerabilities affect energy and transportation critical infrastructure sectors worldwide. ePower did not respond to CISA's coordination requests.

Technical details

Mitigation steps:

Affected products:

ePower epower.ie

Related links:

https://www.cisa.gov/news-events/ics-advisories/icsa-26-062-07
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-062-07.json
https://www.cve.org/CVERecord?id=CVE-2026-22552
https://www.cve.org/CVERecord?id=CVE-2026-27778
https://www.cve.org/CVERecord?id=CVE-2026-24912
https://www.cve.org/CVERecord?id=CVE-2026-27770
https://www.epower.ie/support/
https://cwe.mitre.org/data/definitions/306.html
https://cwe.mitre.org/data/definitions/307.html
https://cwe.mitre.org/data/definitions/613.html
https://cwe.mitre.org/data/definitions/522.html

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page