Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Dalmann OCPP.Core before 1.2.0 for OCPP (Open Charge Point Protocol) for electric vehicles. It does not validate the length of the chargePointVendor field in a BootNotification message, potentially leading to server instability and a denial of service when processing excessively large inputs. NOTE: the vendor's perspective is "OCPP.Core is intended for use in a protected environment/network."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dalmann OCPP.Core 安全漏洞
Vulnerability Description
Dalmann OCPP.Core是Ulrich个人开发者的一个用 .NET 6 编写的 OCPP(开放充电点协议)服务器。 Dalmann OCPP.Core 1.2.0之前版本存在安全漏洞,该漏洞源于服务器不会验证BootNotification消息中chargePointVendor字段的长度,导致攻击者可以通过输入长度过大的内容进行拒绝服务(DOS)攻击。
CVSS Information
N/A
Vulnerability Type
N/A