CVE-2020-8006

Published: Apr 12, 2024

Modified: Nov 4, 2025

PUBLISHED

Description

The server in Circontrol Raption through 5.11.2 has a pre-authentication stack-based buffer overflow that can be exploited to gain run-time control of the device as root. The ocpp1.5 and pwrstudio binaries on the charging station do not use a number of common exploitation mitigations. In particular, there are no stack canaries and they do not use the Position Independent Executable (PIE) format.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://circontrol.com/intelligent-charging-solutions/dc-chargers-series/raption-150/

https://seclists.org/fulldisclosure/2024/Mar/33

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-8006

Description

Affected Products

References