session management

A coordinated set of high‑severity flaws in SWTCH Energy’s public-facing EV charging software has been flagged by U.S. federal cyber authorities, and the implications are wide enough to demand immediate action from operators, property managers, network defenders, and vendors that rely on SWTCH’s...

A cluster of high-severity authentication and session‑management flaws in EV2GO’s ev2go.io charging-management platform has been disclosed by U.S. federal authorities, and the practical impact is stark: every version of the service is listed as affected, the vendor’s public endpoints expose...

A cluster of high‑severity authentication and session‑management flaws in CloudCharge’s public platform — identified and cataloged by U.S. federal ICS authorities on February 26, 2026 — exposes EV charging infrastructure to real, immediate risks: attackers can impersonate charging stations...

EVMAPA’s charging‑station software was publicly flagged in a coordinated CISA advisory that assigns three CVE identifiers — CVE‑2025‑54816, CVE‑2025‑53968 and CVE‑2025‑55705 — and classifies the cluster as a high‑to‑critical risk to EV charging infrastructure because successful exploitation can...