CNNVD-202510-4421 Information

Oct 31, 2025 cve

CNNVD ID

CNNVD-202510-4421

CVE-2025-12357

CNNVD Published: 2025-10-31

Description (Chinese)

IEC ISO 15118-2 Network and Application Protocol Requirements是瑞士IEC公司的一个电动汽车电池充电协议。 IEC ISO 15118-2 Network and Application Protocol Requirements存在安全漏洞，该漏洞源于SLAC协议可能被操纵，可能导致中间人攻击。

Description (English)

IEC ISO 15118-2 Network and Application Production Productions is an electric car battery charging agreement of the Swiss company IEC. The IEC ISO 15118-2 Network and Application Products contains a security loophole, which stems from the potential manipulation of the SLAC agreement and could lead to an attack by an intermediary.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

国际电工委员会

Published

2025-10-31

Last Modified

2026-02-24

References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-303-01.json https://www.cisa.gov/news-events/ics-advisories/icsa-25-303-01 https://www.iec.ch/contact?id=40499 https://access.redhat.com/security/cve/cve-2025-12357

Share on: