Bender Icc16xx

4 CVEs affecting Bender Icc16xx. Latest disclosed: 2025-09-08. Critical: 0, High: 3.

Top CVEs affecting Bender Icc16xx
CVESeverityScorePublishedSummary
CVE-2025-41682High8.82025-09-08An authenticated, low-privileged attacker can obtain credentials stored on the charge controller including the manufacturer password.
CVE-2021-34589High7.52022-04-27In Bender/ebee Charge Controllers in multiple versions are prone to an RFID leak. The RFID of the last charge event can be read without authentication via the…
CVE-2025-41708High7.42025-09-08Due to an unsecure default configuration HTTP is used instead of HTTPS for the web interface. An unauthenticated attacker on the same network could exploit thi…
CVE-2021-34587Medium5.32022-04-27In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable.