VYPR
Vendor

Hardy Barth

Products
4
CVEs
9
Across products
10
Status
Private

Products

4

Recent CVEs

9
  • CVE-2023-46359CriFeb 6, 2024
    risk 0.70cvss 9.8epss 0.81

    An OS command injection vulnerability in Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier, may allow an unauthenticated remote attacker to execute arbitrary commands on the system via a specifically crafted arguments passed to the connectivity check feature.

  • CVE-2024-11666CriNov 24, 2024
    risk 0.59cvss 9.0epss 0.00

    Affected devices beacon to eCharge cloud infrastructure asking if there are any command they should run. This communication is established over an insecure channel since peer verification is disabled everywhere. Therefore, remote unauthenticated users  suitably positioned on…

  • CVE-2025-3883HigMay 22, 2025
    risk 0.57cvss 8.8epss 0.01

    eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not required to…

  • CVE-2025-3882HigMay 22, 2025
    risk 0.57cvss 8.8epss 0.01

    eCharge Hardy Barth cPH2 nwcheckexec.php dest Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not…

  • CVE-2025-3881HigMay 22, 2025
    risk 0.57cvss 8.8epss 0.01

    eCharge Hardy Barth cPH2 check_req.php ntp Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not…

  • CVE-2024-11665HigNov 24, 2024
    risk 0.57cvss 8.8epss 0.01

    Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in hardy-barth cph2_echarge_firmware allows OS Command Injection.This issue affects cph2_echarge_firmware: through 2.0.4.

  • CVE-2023-46360HigFeb 6, 2024
    risk 0.57cvss 8.8epss 0.03

    Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with Unnecessary Privileges.

  • CVE-2025-10371HigSep 13, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in eCharge Hardy Barth Salia PLCC up to 2.3.81. This issue affects some unknown processing of the file /api.php. The manipulation of the argument setrfidlist results in unrestricted upload. The attack may be performed from remote. The exploit…

  • CVE-2025-5873MedJun 9, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in eCharge Hardy Barth Salia PLCC up to 2.3.81. Affected by this issue is some unknown functionality of the file /firmware.php of the component Web UI. Performing a manipulation of the argument media results in unrestricted upload. The attack can be…