CTEK Chargeportal Insufficiently Protected Credentials Vulnerability
Vulnerability
A vulnerability exists in CTEK Chargeportal charging stations due to authentication identifiers being publicly accessible through web-based mapping platforms. This exposure could allow unauthorized administrative control over the charging stations or disrupt charging services, leading to denial-of-service conditions.
Impact
Exploitation of this vulnerability could result in unauthorized administrative access to the affected charging stations or cause disruptions in charging services, similar to a denial-of-service attack.
Remediation
CTEK will be discontinuing this product in April 2026. For more information, please contact CTEK support.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.