Steve-community Steve
4 CVEs affecting Steve-community Steve. Latest disclosed: 2026-02-26. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-25407 | High | 7.5 | 2024-02-13 | SteVe v3.6.0 was discovered to use predictable transaction ID's when receiving a StartTransaction request. This vulnerability can allow attackers to cause a De… |
CVE-2026-28230 | Medium | 6.3 | 2026-02-26 | SteVe is an open-source EV charging station management system. In versions up to and including 3.11.0, when a charger sends a StopTransaction message, SteVe lo… |
CVE-2024-21550 | Medium | 6.1 | 2024-08-12 | SteVe is an open platform that implements different version of the OCPP protocol for Electric Vehicle charge points, acting as a central server for management… |
CVE-2024-44843 | Medium | 5.9 | 2025-04-15 | An issue in the web socket handshake process of SteVe v3.7.1 allows attackers to bypass authentication and execute arbitrary coammands via supplying crafted OC… |