We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
An issue in the web socket handshake process of SteVe v3.7.1 allows attackers to bypass authentication and execute arbitrary coammands via supplying crafted OCPP requests.
Reserved 2024-08-21 | Published 2025-04-15 | Updated 2025-04-16 | Assigner mitregithub.com/steve-community/steve/issues/1546
github.com/...eve/ocpp/ws/OcppWebSocketHandshakeHandler.java
gist.github.com/Badranh/94359664799db6d4709871f0c353f476
Support options