CNVD-2026-13387 — Vulnetix

CNVD-2026-13387 PUBLISHED CVSS 2.5999999046325684 LOW

‌Heliox Flex 180 kW EV Charging Station‌是西门子（Siemens）旗下Heliox系列中的一款‌模块化直流（DC）快速充电设备。Heliox Mobile DC 40 kW EV Charging Station‌是西门子（Siemens）旗下Heliox品牌推出的一款‌便携式、即插即用的直流（DC）电动汽车快速充电设备。 Siemens Heliox EV Chargers存在访问控制漏洞，攻击者可利用漏洞通过充电电缆访问未授权的服务。

Risk Scores

CVSS 3.1

2.5999999046325684

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected Products

Vendor	Product	Versions
Siemens	Heliox Mobile DC 40 kW EV Charging Station	0
Siemens	Heliox Flex 180 kW EV Charging Station	0

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-126399.html (circl)
CIRCL seen: CVE-2025-27769 (circl-sighting)

Timeline

Mar 10, 2026 CVE Published
Mar 12, 2026 PoC Published

References

https://cert-portal.siemens.com/productcert/html/ssa-126399.html url

Open in Interactive Console →