CVE-2026-22540

CRITICAL

Charger Board - DoS

Title source: llm

Description

The massive sending of ARP requests causes a denial of service on one board of the charger that allows control of the EV interfaces. Since the board must be operating correctly for the charger to also function correctly.

References (1)

[Various Sources] https://cds.thalesgroup.com/en

Scores

CVSS v4 9.2

EPSS 0.0006

EPSS Percentile 19.3%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-400

Status published

Products (1)

EFACEC/QC60/90/120 8

Published Jan 07, 2026

Tracked Since Feb 18, 2026