Vulnerability Details CVE-2021-34591
In Bender/ebee Charge Controllers in multiple versions are prone to Local privilege Escalation. An authenticated attacker could get root access via the suid applications socat, ip udhcpc and ifplugd.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.9%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
Products affected by CVE-2021-34591
-
cpe:2.3:h:bender:cc612:-
-
cpe:2.3:h:bender:cc613:-
-
cpe:2.3:o:bender:cc612_firmware:*
-
cpe:2.3:o:bender:cc612_firmware:5.11.0
-
cpe:2.3:o:bender:icc15xx_firmware:*