CNNVD-202601-3934 Information

CNNVD ID

CNNVD-202601-3934

Related CVE

CVE-2025-55705

• CNNVD Published: 2026-01-22

Description (Chinese)

EVMAPA是Daniel Jurik个人开发者的一个电汽车充电站导航应用。 EVMAPA存在代码问题漏洞，该漏洞源于系统允许使用相同充电站ID建立多个并发连接，且缺少适当的会话管理和过期控制，可能导致未经授权的访问、数据不一致或会话操纵。

Description (English)

EVMAPA is a navigational application for an electric car charging station for Daniel Jurik personal developer. EVMAPA has a code problem loophole, which stems from the fact that the system allows multiple simultaneous connections with the same charger ID, and the lack of adequate session management and expired controls may lead to unauthorized access, data inconsistencies or session manipulation.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

个人开发者

Published

2026-01-22

Last Modified

2026-02-24

References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-022-08.json https://www.cisa.gov/news-events/ics-advisories/icsa-26-022-08 https://access.redhat.com/security/cve/cve-2025-55705

Patch

https://evmap.fr/