← back
CVE-2024-44843

CVE-2024-44843

CVSS 5.9 MEDIUMEPSS 0.4%CWE-287
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.9EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
15 Apr 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An issue in the web socket handshake process of SteVe v3.7.1 allows attackers to bypass authentication and execute arbitrary coammands via supplying crafted OCPP requests.
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:L
Affected products
n/a · n/a