CVE-2026-27815: CWE-787: Out-of-bounds Write in EVerest everest-core
CVE-2026-27815 is a medium severity vulnerability in the EVerest everest-core EV charging software stack prior to version 2026. 02. 0. It involves an out-of-bounds write caused by copying a variable-length payment_options list into a fixed-size array of length 2 without bounds checking. This occurs in the ISO15118_chargerImpl::handle_session_setup function. Since schema validation is disabled by default, oversized MQTT command payloads can trigger this vulnerability, potentially corrupting adjacent EVSE state or causing the process to crash. A patch addressing this issue is included in version 2026. 02. 0.
AI Analysis
Technical Summary
The vulnerability CVE-2026-27815 in EVerest everest-core arises from an out-of-bounds write (CWE-787) in the ISO15118_chargerImpl::handle_session_setup function. Specifically, a variable-length payment_options list is copied into a fixed-size array of length 2 without bounds checking. Because schema validation is disabled by default, an attacker can send oversized MQTT command payloads that exploit this flaw, leading to memory corruption or process crashes. The issue affects versions prior to 2026.02.0, which contains a patch to fix the problem.
Potential Impact
Exploitation of this vulnerability can result in memory corruption or a denial-of-service condition due to process crashes within the EV charging software. This could disrupt EVSE (Electric Vehicle Supply Equipment) operations or cause instability in the charging system. There is no indication of privilege escalation or remote code execution in the provided data.
Mitigation Recommendations
A patch fixing this vulnerability is available in EVerest everest-core version 2026.02.0. Users should upgrade to this version or later to remediate the issue. Since this is not a cloud service, remediation depends on applying the vendor's patch. Patch status is confirmed by the vendor advisory information.
CVE-2026-27815: CWE-787: Out-of-bounds Write in EVerest everest-core
Description
CVE-2026-27815 is a medium severity vulnerability in the EVerest everest-core EV charging software stack prior to version 2026. 02. 0. It involves an out-of-bounds write caused by copying a variable-length payment_options list into a fixed-size array of length 2 without bounds checking. This occurs in the ISO15118_chargerImpl::handle_session_setup function. Since schema validation is disabled by default, oversized MQTT command payloads can trigger this vulnerability, potentially corrupting adjacent EVSE state or causing the process to crash. A patch addressing this issue is included in version 2026. 02. 0.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability CVE-2026-27815 in EVerest everest-core arises from an out-of-bounds write (CWE-787) in the ISO15118_chargerImpl::handle_session_setup function. Specifically, a variable-length payment_options list is copied into a fixed-size array of length 2 without bounds checking. Because schema validation is disabled by default, an attacker can send oversized MQTT command payloads that exploit this flaw, leading to memory corruption or process crashes. The issue affects versions prior to 2026.02.0, which contains a patch to fix the problem.
Potential Impact
Exploitation of this vulnerability can result in memory corruption or a denial-of-service condition due to process crashes within the EV charging software. This could disrupt EVSE (Electric Vehicle Supply Equipment) operations or cause instability in the charging system. There is no indication of privilege escalation or remote code execution in the provided data.
Mitigation Recommendations
A patch fixing this vulnerability is available in EVerest everest-core version 2026.02.0. Users should upgrade to this version or later to remediate the issue. Since this is not a cloud service, remediation depends on applying the vendor's patch. Patch status is confirmed by the vendor advisory information.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-02-24T02:31:33.268Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 69c562cdf4197a8e3be49a81
Added to database: 3/26/2026, 4:46:05 PM
Last enriched: 4/3/2026, 1:13:38 PM
Last updated: 5/10/2026, 10:47:54 PM
Views: 41
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.