Mark I. Johnson

1 exploit Active since Oct 2025
CVE-2025-12357 WRITEUP MEDIUM WRITEUP
ISO 15118-2 EV Car Chargers - Man-in-the-Middle Attack via SLAC Protocol Spoofing
By manipulating the Signal Level Attenuation Characterization (SLAC) protocol with spoofed measurements, an attacker can stage a man-in-the-middle attack between an electric vehicle and chargers that comply with the ISO 15118-2 part. This vulnerability may be exploitable wirelessly, within close proximity, via electromagnetic induction.
CVSS 6.3