Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

EFACEC — Vulnerabilities & Security Advisories 15

Browse all 15 CVE security advisories affecting EFACEC. AI-powered Chinese analysis, POCs, and references for each vulnerability.

EFACEC, a Portuguese technology and engineering firm, specializes in energy, transportation, and automation solutions with critical infrastructure deployments. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and authentication flaws. While no major public security incidents have been widely documented, the 15 CVEs on record indicate persistent security challenges in their software portfolio. Their industrial control systems and energy management platforms present attractive targets for threat actors due to their critical infrastructure positioning, necessitating robust security measures to mitigate potential operational disruptions.

Top products by EFACEC: QC 60/90/120 UC 500E BCU 500 QC60/90/120
CVE IDTitleCVSSSeverityPublished
CVE-2026-22539 INFORMATION DISCLOSURE VIA CURL REQUESTS (OCPP) — QC 60/90/120CWE-201 5.3 -2026-01-07
CVE-2026-22537 INFORMATION DISCLOSURE WITHIN THE OPERATING SYSTEM — QC 60/90/120CWE-497 4.6 -2026-01-07
CVE-2026-22536 PRIVILEGE ESCALATION VIA SUDO COMMAND — QC 60/90/120CWE-269 7.8 -2026-01-07
CVE-2026-22535 FRAIL SECURITY IN MQTT PROTOCOL ALLOWS AN ATTACKER MODIFY CRITICAL PARAMETERS — QC 60/90/120CWE-1366 9.1 -2026-01-07
CVE-2026-22544 EXCHANGE OF CREDENTIALS IN CLEAR TEXT — QC 60/90/120CWE-319 7.5 -2026-01-07
CVE-2026-22543 WEEK ENCODING FOR PASSWORDS — QC 60/90/120CWE-261 9.1 -2026-01-07
CVE-2026-22542 DENIAL OF SERVICE FOR CONCURRENT CONNECTIONS ON TELNET — QC 60/90/120CWE-400 6.5 -2026-01-07
CVE-2026-22541 DENIAL OF SERVICE VIA ICMP PACKETS — QC 60/90/120CWE-400 9.1 -2026-01-07
CVE-2026-22540 DENIAL OF SERVICE VIA ARP PACKETS — QC60/90/120CWE-400 8.1 -2026-01-07
CVE-2023-50706 Improper Access Control in EFACEC UC 500E — UC 500ECWE-284 4.1 Medium2023-12-19
CVE-2023-50705 Exposure of Sensitive Information to an Unauthorized Actor in EFACEC UC 500E — UC 500ECWE-200 5.3 Medium2023-12-19
CVE-2023-50704 URL Redirection to Untrusted Site ('Open Redirect') in EFACEC UC 500E — UC 500ECWE-601 4.3 Medium2023-12-19
CVE-2023-50703 Cleartext Transmission of Sensitive Information in EFACEC UC 500E — UC 500ECWE-319 6.3 Medium2023-12-19
CVE-2023-6689 Cross-Site Request Forgery in EFACEC BCU 500 — BCU 500CWE-352 8.2 High2023-12-19
CVE-2023-50707 Uncontrolled Resource Consumption in EFACEC BCU 500 — BCU 500CWE-400 9.6 Critical2023-12-19

This page lists every published CVE security advisory associated with EFACEC. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.