CVE-2026-27828: CWE-416: Use After Free in EVerest everest-core
CVE-2026-27828 is a use-after-free vulnerability in the EVerest everest-core EV charging software stack prior to version 2026. 02. 0. The issue occurs in the ISO15118_chargerImpl::handle_session_setup function, which uses a freed v2g_ctx object when ISO15118 initialization fails, such as when no IPv6 link-local address is present. An attacker with MQTT access can remotely crash the EVSE process by issuing a session_setup command under these conditions. The vulnerability has a medium severity with a CVSS score of 5. 5. Version 2026. 02. 0 contains a patch that addresses this issue.
AI Analysis
Technical Summary
EVerest everest-core versions before 2026.02.0 contain a use-after-free vulnerability (CWE-416) in the ISO15118_chargerImpl::handle_session_setup function. When ISO15118 initialization fails, the function uses the v2g_ctx pointer after it has been freed, leading to potential remote crashes of the EVSE process. Exploitation requires MQTT access to send a session_setup command while v2g_ctx is released. The vulnerability is patched in version 2026.02.0.
Potential Impact
An attacker with MQTT access can remotely crash the EVSE process by exploiting the use-after-free condition, potentially causing denial of service. There is no indication of privilege escalation, data leakage, or code execution from the provided data.
Mitigation Recommendations
Upgrade to EVerest everest-core version 2026.02.0 or later, which contains the official patch for this vulnerability. No other mitigation is indicated or required according to the available information.
CVE-2026-27828: CWE-416: Use After Free in EVerest everest-core
Description
CVE-2026-27828 is a use-after-free vulnerability in the EVerest everest-core EV charging software stack prior to version 2026. 02. 0. The issue occurs in the ISO15118_chargerImpl::handle_session_setup function, which uses a freed v2g_ctx object when ISO15118 initialization fails, such as when no IPv6 link-local address is present. An attacker with MQTT access can remotely crash the EVSE process by issuing a session_setup command under these conditions. The vulnerability has a medium severity with a CVSS score of 5. 5. Version 2026. 02. 0 contains a patch that addresses this issue.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
EVerest everest-core versions before 2026.02.0 contain a use-after-free vulnerability (CWE-416) in the ISO15118_chargerImpl::handle_session_setup function. When ISO15118 initialization fails, the function uses the v2g_ctx pointer after it has been freed, leading to potential remote crashes of the EVSE process. Exploitation requires MQTT access to send a session_setup command while v2g_ctx is released. The vulnerability is patched in version 2026.02.0.
Potential Impact
An attacker with MQTT access can remotely crash the EVSE process by exploiting the use-after-free condition, potentially causing denial of service. There is no indication of privilege escalation, data leakage, or code execution from the provided data.
Mitigation Recommendations
Upgrade to EVerest everest-core version 2026.02.0 or later, which contains the official patch for this vulnerability. No other mitigation is indicated or required according to the available information.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-02-24T02:32:39.800Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 69c562cdf4197a8e3be49a87
Added to database: 3/26/2026, 4:46:05 PM
Last enriched: 4/3/2026, 1:39:15 PM
Last updated: 5/10/2026, 3:49:30 PM
Views: 39
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.