Iocharger Command Injection Vulnerability in AC Models Allows Root OS Command Execution
Vulnerability
A command injection vulnerability has been identified in Iocharger firmware for AC models, affecting versions prior to 24120701. This vulnerability allows authenticated users to execute operating system commands as root on the charging station. The issue arises from improper neutralization of special elements used in commands, enabling command injection via a specific binary. While the vulnerability requires a low-privilege account to access the binary, it can potentially be exploited by convincing a user with the necessary access to send a crafted HTTP request.
Impact
Exploitation of this vulnerability leads to full control over the affected charging station as the root user, allowing unauthorized addition, modification, and deletion of files and services. Furthermore, compromised devices can be used to pivot to other networks that should be unreachable. As this is an electric vehicle charger using high power, there is a potential safety impact.
Remediation
Iocharger has released a firmware update version 24120701 that addresses this vulnerability. Version 25010801, also available, fixes additional vulnerabilities. The firmware can be obtained through Iocharger distributors. If not contacted by a distributor, users can reach out to Iocharger directly via email for the update.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.