CNNVD-202601-3362 Information

CNNVD ID

CNNVD-202601-3362

Related CVE

CVE-2025-68135

• CNNVD Published: 2026-01-21

Description (Chinese)

everest-core是EVerest开源的一个电动汽车充电软件堆栈的主要部分。 everest-core 2025.10.0之前版本存在安全漏洞，该漏洞源于TbdController循环未正确处理C++异常，可能导致其自身及调用者静默终止，引发拒绝服务。

Description (English)

Veverest-core is the main part of an electric vehicle charging software stack at the EVerest open source. There is a security loophole in the pre-everest-core 2025.10.0, which stems from the failure of the TbdController cycle to properly address the C++ anomaly, which could lead to a silent termination of the service for itself and its caller and trigger a denial of service.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

EVerest

Published

2026-01-21

Last Modified

2026-02-24

References

https://github.com/EVerest/everest-core/security/advisories/GHSA-g7mm-r6qp-96vh https://access.redhat.com/security/cve/cve-2025-68135

Patch

https://github.com/EVerest/everest-core