We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-44843



Description

An issue in the web socket handshake process of SteVe v3.7.1 allows attackers to bypass authentication and execute arbitrary coammands via supplying crafted OCPP requests.

Reserved 2024-08-21 | Published 2025-04-15 | Updated 2025-04-16 | Assigner mitre

References

github.com/steve-community/steve/issues/1546

github.com/...eve/ocpp/ws/OcppWebSocketHandshakeHandler.java

gist.github.com/Badranh/94359664799db6d4709871f0c353f476

cve.org (CVE-2024-44843)

nvd.nist.gov (CVE-2024-44843)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2024-44843

Support options

Helpdesk Chat, Email, Knowledgebase