VDB

ICSA-25-135-08

ICSA-25-135-08 PUBLISHED CVSS 4.199999809265137 MEDIUM

VersiCharge AC Series EV Chargers contain two vulnerabilities that could allow an attacker to gain control of the chargers through default Modbus port or execute arbitrary code by manipulating the M0 firmware. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens recommends countermeasures for products where fixes are not, or not yet available.

Risk Scores

CVSS 3.1
4.199999809265137
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected Products

VendorProductVersions
IEC 3Ph 22kW Child cable 7m (8EM1310-3EJ04-0GA0)
IEC 1Ph 7.4kW Child socket/ shutter (8EM1310-2EN04-0GA0)
IEC 1Ph 7.4kW Parent cable 7m (8EM1310-2EJ04-3GA1)
IEC 1Ph 7.4kW Child socket (8EM1310-2EH04-0GA0)
IEC 1Ph 7.4kW Parent socket (8EM1310-2EH04-3GA1)
IEC 1Ph 7.4kW Parent cable 7m incl. SIM (8EM1310-2EJ04-3GA2)
IEC 1Ph 7.4kW Parent socket incl. SIM (8EM1310-2EH04-3GA2)
IEC 1Ph 7.4kW Parent socket/ shutter (8EM1310-2EN04-3GA1)
IEC 3Ph 22kW Child socket (8EM1310-3EH04-0GA0)
IEC 1Ph 7.4kW Parent socket/ shutter SIM (8EM1310-2EN04-3GA2)

Timeline

  • May 13, 2025 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›