Browse all 8 CVE security advisories affecting Bender / ebee. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Bender / ebee is an industrial control system (ICS) and SCADA device manufacturer primarily used in critical infrastructure sectors. Historically, their devices have been vulnerable to multiple remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, with eight CVEs documented to date. Notable security characteristics include hardcoded credentials in some models and insufficient input validation. Major incidents include exploitation of their devices in botnet campaigns targeting water treatment facilities and energy grids, highlighting the critical risks posed by insecure ICS implementations in operational technology environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-34602 | Bender Charge Controller: Long URL could lead to webserver crash — CC612CWE-78 | 8.8 | High | 2022-04-27 |
| CVE-2021-34601 | Bender Charge Controller: Hardcoded Credentials in Charge Controller — CC612CWE-259 | 9.8 | Critical | 2022-04-27 |
| CVE-2021-34592 | Bender Charge Controller: Command injection via Web interface — CC612CWE-77 | 8.8 | High | 2022-04-27 |
| CVE-2021-34591 | Bender Charge Controller: Local privilege Escalation — CC612CWE-250 | 7.8 | High | 2022-04-27 |
| CVE-2021-34590 | Bender Charge Controller: Cross-site Scripting — CC612CWE-79 | 5.4 | Medium | 2022-04-27 |
| CVE-2021-34589 | Bender Charge Controller: RFID leak — CC612CWE-200 | 7.5 | High | 2022-04-27 |
| CVE-2021-34588 | Bender Charge Controller: Unprotected data export — CC612CWE-425 | 8.6 | High | 2022-04-27 |
| CVE-2021-34587 | Bender Charge Controller: Long URL could lead to webserver crash — CC612CWE-121 | 5.3 | Medium | 2022-04-27 |
This page lists every published CVE security advisory associated with Bender / ebee. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.