CVE-2024-11665 Information

Description

Improper Neutralization of Special Elements used in a Command (‘Command Injection’) vulnerability in hardy-barth cph2_echarge_firmware allows OS Command Injection.This issue affects cph2_echarge_firmware: through 2.0.4.

Reference

https://www.onekey.com/resource/critical-vulnerabilities-in-ev-charging-stations-analysis-of-echarge-controllers