Back to search
CVE-2025-48414
Published: May 21, 2025
Modified: Nov 3, 2025
PUBLISHED
Description
There are several scripts in the web interface that are accessible via undocumented hard-coded credentials. The scripts provide access to additional administrative/debug functionality and are likely intended for debugging during development and provides an additional attack surface.
| Vendor | Product | Versions |
|---|---|---|
eCharge Hardy Barth | cPH2 / cPP2 charging stations | affected <=2.2.0 |
Weaknesses (CWE)
References
https://r.sec-consult.com/echarge
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now