Medium severity4.2NVD Advisory· Published Mar 26, 2026· Updated Mar 31, 2026

CVE-2026-27814

Description

EVerest is an EV charging software stack. Versions prior to 2026.02.0 have a data race (C++ UB) triggered by an A 1-phase ↔ 3-phase switch request (ac_switch_three_phases_while_charging) during charging/waiting executes concurrently with the state machine loop. Version 2026.02.0 contains a patch.

Affected products

Linux Foundation/Everest
cpe:2.3:o:linuxfoundation:everest:*:*:*:*:*:*:*:*
Range: <2026.02.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/EVerest/EVerest/security/advisories/GHSA-5528-wc53-v557nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.273
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000