High severityNVD Advisory· Published May 28, 2026· Updated May 29, 2026
CVE-2026-9038
CVE-2026-9038
Description
A stack-based buffer overflow vulnerability in the charging controller’s signal-processing logic allows an attacker with physical access to the charging interface to supply message fields that exceed expected bounds. Because the input is not sufficiently validated, memory corruption may occur, which can lead to execution of unauthorized code with elevated privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Patches
Vulnerability mechanics
References
1News mentions
1- XCharge C6CISA ICS Advisories