Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Circontrol Subscribe
Filtered by product Open Charge Point Protocol
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-16669 1 Circontrol 1 Open Charge Point Protocol 2019-10-02 5.0 MEDIUM 9.8 CRITICAL
An issue was discovered in CIRCONTROL Open Charge Point Protocol (OCPP) before 1.5.0, as used in CirCarLife, PowerStudio, and other products. Due to storage of credentials in XML files, an unprivileged user can look at /services/config/config.xml for the admin credentials of the ocpp and circarlife panels.