SSA-126399 — Vulnetix

SSA-126399 PUBLISHED CVSS 2.5999999046325684 LOW

Heliox EV Chargers listed below contain improper access control vulnerability that could allow an attacker to reach unauthorized services via the charging cable. Siemens has released new versions for the affected products and recommends to update to the latest versions.

Risk Scores

CVSS v3.1

2.5999999046325684

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected Products

Vendor	Product	Versions
	Heliox Mobile DC 40 kW EV Charging Station
	Heliox Flex 180 kW EV Charging Station

Timeline

Mar 10, 2026 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-126399.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-126399.json advisory

Open in Interactive Console →