Vulnerability in Xcharge C6
CVE-2026-9037
A firmware update mechanism in the affected charging controller fails to validate the authenticity of firmware packages delivered through the device's management interface. Because cryptographic signatures are not verified, an attacker wit…
EPSS: 0.000 (12.8th percentile) — read the EPSS interpretation.
Affected products
- Xcharge C6 — versions 0
Weakness classification (CWE)
References
- ics-cert@hq.dhs.gov (government-resource)