CVE-2025-68139— In EVerest, by default, the EV is responsible for closing the connection if the module encounters an error during request processing
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-68139
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
In EVerest, by default, the EV is responsible for closing the connection if the module encounters an error during request processing
Source: NVD (National Vulnerability Database)
Vulnerability Description
EVerest is an EV charging software stack. In all versions up to and including 2025.12.1, the default value for `terminate_connection_on_failed_response` is `False`, which leaves the responsibility for session and connection termination to the EV. In this configuration, any errors encountered by the module are logged but do not trigger countermeasures such as session and connection reset or termination. This could be abused by a malicious user in order to exploit other weaknesses or vulnerabilities. While the default will stay at the setting that is described as potentially problematic in this reported issue, a mitigation is available by changing the `terminate_connection_on_failed_response` setting to `true`. However this cannot be set to this value by default since it can trigger errors in vehicle ECUs requiring ECU resets and lengthy unavailability in charging for vehicles. The maintainers judge this to be a much more important workaround then short-term unavailability of an EVSE, therefore this setting will stay at the current value.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
会话固定
Source: NVD (National Vulnerability Database)
Vulnerability Title
everest-core 授权问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
everest-core是EVerest开源的一个电动汽车充电软件堆栈的主要部分。 everest-core 2025.12.1及之前版本存在授权问题漏洞,该漏洞源于terminate_connection_on_failed_response默认配置为False,可能导致恶意用户利用其他弱点或漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| EVerest | everest-core | <= 2025.12.1 | - |
II. Public POCs for CVE-2025-68139
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-68139
请登录查看更多情报信息。
Same Patch Batch · EVerest · 2026-01-21 · 11 CVEs total
| CVE-2025-68137 | 8.4 HIGH | EVerest's Integer Overflow and Signed to Unsigned conversion lead to either stack buffer o |
| CVE-2025-68133 | 7.4 HIGH | EVerest's unlimited connections can lead to DoS through operating system resource exhausti |
| CVE-2025-68134 | 7.4 HIGH | EVerest's use of assert functions can potentially lead to denial of service |
| CVE-2025-68136 | 7.4 HIGH | EVerest's inadequate session handling can lead to memory-related errors or exhaustion of t |
| CVE-2025-68141 | 7.4 HIGH | EVerest vulnerable to null pointer dereference during DC_ChargeLoopRes document deserializ |
| CVE-2025-68135 | 6.5 MEDIUM | EVerest's inadequate exception handling leads to denial of service |
| CVE-2025-68138 | 4.7 MEDIUM | EVerest affected by memory exhaustion in libocpp |
| CVE-2025-68140 | 4.3 MEDIUM | EVerest allows null session ID to bypass session ID verification |
| CVE-2026-23955 | 4.2 MEDIUM | EVerest vulnerable to concatenation of strings literal and integers |
| CVE-2025-68132 | EVerest has out-of-bounds read in DZG_GSH01 SLIP CRC parser that can crash powermeter driv |
IV. Related Vulnerabilities
Same product: everest-core
- CVE-2026-33015
EVerest has RemoteStop Bypass via BCB Toggle Session Restart - CVE-2026-33014
EVerest has Delayed Authorization Response Bypasses Terminat - CVE-2026-33009
EVerest: MQTT Switch-Phases Command Data Race Causing Charge - CVE-2026-29044
EVerest: Charging Continues When WithdrawAuthorization Is Pr - CVE-2026-27828
EVerest: ISO15118 session_setup use-after-free can crash EVS
Same vendor: EVerest
- CVE-2026-33015
EVerest has RemoteStop Bypass via BCB Toggle Session Restart - CVE-2026-33014
EVerest has Delayed Authorization Response Bypasses Terminat - CVE-2026-33009
EVerest: MQTT Switch-Phases Command Data Race Causing Charge - CVE-2026-29044
EVerest: Charging Continues When WithdrawAuthorization Is Pr - CVE-2026-27828
EVerest: ISO15118 session_setup use-after-free can crash EVS
Same weakness: CWE-384
- CVE-2025-46605
Dell PowerProtect Data Domain(Dell PowerProtect DD) 安全漏洞 - CVE-2026-31940
Session Fixation in Chamilo LMS - CVE-2026-33946
MCP Ruby SDK: Insufficient Session Binding Allows SSE Stream - CVE-2026-33757
OpenBao lacks user confirmation for OIDC direct callback mod - CVE-2026-25101
Session Fixation in Bludit
V. Comments for CVE-2025-68139
No comments yet