Which versions of CTEK Chargeportal are affected by CVE-2026-25192?

CVE-2026-25192 is a critical authentication bypass in CTEK Chargeportal's OCPP WebSocket endpoints that allows unauthenticated remote attackers to impersonate charging stations and execute fraudulent…

CTEK Chargeportal CVE-2026-25192

Q: What is the CVSS score of CVE-2026-25192?

CVE-2026-25192 has a CVSS 4.0 base score of 9.3 (Critical). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.1%.

EUVD-2026-13846 CRITICAL

Missing Authentication for Critical Function (CWE-306)

2026-03-20 icscert

Authentication Bypass Privilege Escalation

9.3

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Analysis Updated

May 06, 2026 - 15:27 vuln.today

v2 (cvss_changed)

Re-analysis Queued

May 06, 2026 - 15:22 vuln.today

cvss_changed

CVSS changed

May 06, 2026 - 15:22 NVD

9.4 (CRITICAL) 9.3 (CRITICAL)

EUVD ID Assigned

Mar 20, 2026 - 23:01 euvd

EUVD-2026-13846

Analysis Generated

Mar 20, 2026 - 23:01 vuln.today

CVE Published

Mar 20, 2026 - 22:42 nvd

CRITICAL 9.4

DescriptionNVD

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a known or discovered charging station identifier, then issue or receive OCPP commands as a legitimate charger. Given that no authentication is required, this can lead to privilege escalation, unauthorized control of charging infrastructure, and corruption of charging network data reported to the backend.

AnalysisAI

CTEK Chargeportal's OCPP WebSocket endpoints accept unauthenticated connections, allowing remote attackers to impersonate charging stations by connecting with known or discovered station identifiers and issuing fraudulent OCPP commands to the backend infrastructure. This authentication bypass enables complete control over charging operations, data manipulation, and privilege escalation across the charging network. …

RemediationAI

24 hours: Isolate all CTEK Chargeportal systems from untrusted networks; enable network-based access controls restricting OCPP WebSocket connections to known, authorized station identifiers only; begin inventory of all active charging stations and connected devices. 7 days: Deploy network segmentation placing Chargeportal infrastructure on a restricted VLAN; implement enhanced logging and alerting for WebSocket connection attempts with anomalous station identifiers; conduct forensic review of connection logs for indicators of unauthorized access. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-25192 vulnerability details – vuln.today

Back

CTEK Chargeportal CVE-2026-25192

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

CTEK Chargeportal CVE-2026-25192

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code