StarCharge Artemis AC Charger Hardcoded AES Key Vulnerability Allowing Token Forgery or Decryption

Vulnerability

A vulnerability exists in the StarCharge Artemis AC Charger model 7-22 kW, specifically in version 1.0.4. The issue arises from a hardcoded AES key that enables attackers to forge or decrypt valid login tokens. This vulnerability is present in the Web Configuration interface and can be exploited by authenticated network-adjacent attackers.

Impact

Exploitation of this vulnerability could lead to unauthorized token manipulation or decryption, allowing for authentication bypass.

Added: Oct 27, 2025, 3:18 PM

Updated: Oct 27, 2025, 8:35 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

StarCharge Artemis AC Charger Hardcoded AES Key Vulnerability Allowing Token Forgery or Decryption

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating