PatchSiren

CloudCharge CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH CloudCharge CVE published 2026-02-26

CVE-2026-25114

CVE-2026-25114 affects CloudCharge cloudcharge.se. According to CISA’s advisory, the WebSocket Application Programming Interface does not restrict authentication request volume, which can let an attacker disrupt charger telemetry or attempt brute-force access. The issue is network-reachable and scored CVSS 3.1 7.5 HIGH.