CVE-2026-23955

Name of the Vulnerable Software and Affected Versions EVerest versions prior to 2025.9.0

Description EVerest is an EV charging software stack susceptible to a memory reading issue. Integer values are incorrectly concatenated to literal strings when generating error messages, leading to pointer arithmetic instead of proper integer representation. This allows a malicious actor to read unintended memory regions, including the heap and the stack.

Recommendations Update to version 2025.9.0 or later.