Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2026-22541— DENIAL OF SERVICE VIA ICMP PACKETS

EPSS 0.06% · P19
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-22541

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
DENIAL OF SERVICE VIA ICMP PACKETS
Source: NVD (National Vulnerability Database)
Vulnerability Description
The massive sending of ICMP requests causes a denial of service on one of the boards from the EVCharger that allows control the EV interfaces. Since the board must be operating correctly for the charger to also function correctly.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Efacec QC 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Efacec QC是葡萄牙Efacec公司的一系列电动汽车充电桩。 Efacec QC 60/90/120存在安全漏洞,该漏洞源于大量发送ICMP请求可能导致控制EV接口的充电器板卡拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
EFACECQC 60/90/120 8 -

II. Public POCs for CVE-2026-22541

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-22541

Please Login to view more intelligence information

Same Patch Batch · EFACEC · 2026-01-07 · 9 CVEs total

CVE-2026-22542DENIAL OF SERVICE FOR CONCURRENT CONNECTIONS ON TELNET
CVE-2026-22544EXCHANGE OF CREDENTIALS IN CLEAR TEXT
CVE-2026-22540DENIAL OF SERVICE VIA ARP PACKETS
CVE-2026-22539INFORMATION DISCLOSURE VIA CURL REQUESTS (OCPP)
CVE-2026-22543WEEK ENCODING FOR PASSWORDS
CVE-2026-22537INFORMATION DISCLOSURE WITHIN THE OPERATING SYSTEM
CVE-2026-22536PRIVILEGE ESCALATION VIA SUDO COMMAND
CVE-2026-22535FRAIL SECURITY IN MQTT PROTOCOL ALLOWS AN ATTACKER MODIFY CRITICAL PARAMETERS

IV. Related Vulnerabilities

Same product: QC 60/90/120
Same vendor: EFACEC
Same weakness: CWE-400

V. Comments for CVE-2026-22541

No comments yet

Leave a comment