SWITCH EV WebSocket Session Hijacking Vulnerability
Vulnerability
A vulnerability in the WebSocket backend of SWITCH EV's charging station management system allows multiple endpoints to connect using the same session identifier. This flaw creates predictable session identifiers, enabling session hijacking or shadowing. The most recent connection can displace the legitimate charging station, intercepting backend commands intended for it. This vulnerability could also allow unauthorized users to authenticate as other users or enable a denial-of-service condition by overwhelming the backend with valid session requests.
Impact
Exploitation of this vulnerability could lead to session hijacking, allowing an attacker to impersonate a charging station and intercept or manipulate backend communications. It could also cause a denial-of-service condition by flooding the backend with session requests.
Remediation
SWITCH EV did not respond to CISA's request for coordination. Contact SWITCH EV through their website for more information.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.