CVE-2026-20744
CRITICAL SEVERITYCVSS Score & Metrics
Base Score
9.8 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Description
The charging station websocket endpoint accepts connections without
proper authentication, which could lead to privilege escalation.
proper authentication, which could lead to privilege escalation.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-284
Source
NVD
Vendor
Hydro-Québec
Product
Le Circuit Electrique charging station backend
Discussion (0)
Add Comment
No comments yet. Be the first!