Thales Electric Vehicle Charger Denial-of-Service Vulnerability via ARP Request Flooding

Vulnerability

A denial-of-service vulnerability has been identified in Thales electric vehicle chargers. The issue arises from excessive Address Resolution Protocol (ARP) requests, which disrupt the normal operation of a control board responsible for managing electric vehicle interfaces. This interference can cause the charger to malfunction.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition on the affected charger board, disrupting the normal functionality of the electric vehicle interfaces.

Added: Jan 7, 2026, 5:43 PM

Updated: Jan 7, 2026, 5:43 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

1.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

1.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Thales Electric Vehicle Charger Denial-of-Service Vulnerability via ARP Request Flooding

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating