Primary

Context

ChargePoint Home Flex Command Injection Vulnerability Allowing Privileged Command Execution

Vulnerability

A command injection vulnerability has been identified in ChargePoint Home Flex version 5.5.4.13. The issue arises in the 'uploadsm' component, which fails to properly validate user-controlled input for bz2 decompression. This lack of validation enables local users to execute arbitrary commands with 'nobody' privileges.

Impact

Exploitation of this vulnerability allows for arbitrary command execution with elevated privileges, as the 'nobody' user.

Reproduction

To reproduce this vulnerability, send a POST request to the 'uploadsm' binary with a bz2 file that includes a payload in the decompression string. The absence of string length validation allows the injection of commands, which will be executed with 'nobody' privileges.

Added: Aug 1, 2025, 6:54 PM

Updated: Aug 1, 2025, 8:16 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.6

remediation

0.0

relevance

0.3

threat

1.6

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.6

remediation

0.0

relevance

0.3

threat

1.6

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ChargePoint Home Flex Command Injection Vulnerability Allowing Privileged Command Execution

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating