CVE-2026-27773 is a medium-severity exposure affecting SWTCH EV charging infrastructure, where authentication identifiers are publicly accessible via web-based mapping platforms. The main risk is reconnaissance: exposed identifiers can help an attacker identify and target charging assets, even if the advisory does not describe direct code execution or confirmed compromise. CISA published the advisory on 2 [truncated]
CVE-2026-27767 affects SWTCH EV / swtchenergy.com and was published by CISA on 2026-02-26, with Update A on 2026-05-14 adding mitigations. The advisory says WebSocket endpoints lack proper authentication, allowing an unauthenticated attacker to connect to the OCPP WebSocket endpoint using a known or discovered charging station identifier and act as a legitimate charger. CISA characterizes the impact as un [truncated]
CVE-2026-25778 describes a weakness in the SWTCH EV WebSocket backend where charging station identifiers are used to associate sessions, but multiple endpoints can connect with the same session identifier. That can let a later connection displace the legitimate charger session, causing session hijacking or shadowing and potentially denying service to the displaced station. CISA published the advisory on 2 [truncated]
CVE-2026-25113 is a network-reachable weakness in the SWTCH EV / swtchenergy.com WebSocket application interface where authentication requests are not rate-limited. According to CISA’s advisory, that gap may let an attacker suppress or mis-route legitimate charger telemetry, trigger denial-of-service conditions, or brute-force authentication to gain unauthorized access. The advisory was first published on [truncated]
