Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
International Standards Organization ISO 15118-2 Improper Restriction of Communication Channel to Intended Endpoints
Vulnerability Description
By manipulating the Signal Level Attenuation Characterization (SLAC) protocol with spoofed measurements, an attacker can stage a man-in-the-middle attack between an electric vehicle and chargers that comply with the ISO 15118-2 part. This vulnerability may be exploitable wirelessly, within close proximity, via electromagnetic induction.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
通信信道对预期端点的不适当限制
Vulnerability Title
IEC ISO 15118-2 Network and Application Protocol Requirements 安全漏洞
Vulnerability Description
IEC ISO 15118-2 Network and Application Protocol Requirements是瑞士IEC公司的一个电动汽车电池充电协议。 IEC ISO 15118-2 Network and Application Protocol Requirements存在安全漏洞,该漏洞源于SLAC协议可能被操纵,可能导致中间人攻击。
CVSS Information
N/A
Vulnerability Type
N/A