All 7 CVE vulnerabilities found in cPH2 / cPP2 charging stations, with AI-generated Chinese analysis, references, and POCs.
Vendor: eCharge Hardy Barth
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-48417 | Hard-Coded Certificate and Private Key for HTTPS Web Interface in eCharge Hardy Barth cPH2 / cPP2 charging stations CWE-321 | 8.1AI | HighAI | 2025-05-21 |
| CVE-2025-48416 | Backdoor Functionality via SSH in eCharge Hardy Barth cPH2 / cPP2 charging stations CWE-912 | 9.8AI | CriticalAI | 2025-05-21 |
| CVE-2025-48415 | Backdoor Functionality via USB Drive in eCharge Hardy Barth cPH2 / cPP2 charging stations CWE-749 | 6.8AI | MediumAI | 2025-05-21 |
| CVE-2025-48414 | Hard-coded web interface credentials in eCharge Hardy Barth cPH2 / cPP2 charging stations CWE-798 | 9.8 | - | 2025-05-21 |
| CVE-2025-48413 | Hard-coded OS root credentials in eCharge Hardy Barth cPH2 / cPP2 charging stations CWE-798 | 9.8AI | CriticalAI | 2025-05-21 |
| CVE-2025-27804 | OS Command Injection Vulnerability in eCharge Hardy Barth cPH2 / cPP2 charging stations CWE-78 | 9.8AI | CriticalAI | 2025-05-21 |
| CVE-2025-27803 | Missing Authentication in eCharge Hardy Barth cPH2 / cPP2 charging stations CWE-306 | 9.8AI | CriticalAI | 2025-05-21 |
All 7 known CVE vulnerabilities affecting cPH2 / cPP2 charging stations with full Chinese analysis, references, and POCs where available.