CVE-2023-49956

Name of the Vulnerable Software and Affected Versions Dalmann OCPP.Core versions prior to 1.3.0

Description An issue was discovered in Dalmann OCPP.Core for OCPP (Open Charge Point Protocol) for electric vehicles. A StopTransaction message with any random transactionId terminates active transactions.

Recommendations For versions prior to 1.3.0, update to version 1.3.0 or later to resolve the issue. As a temporary workaround, consider restricting the handling of StopTransaction messages with random transactionId values to prevent unauthorized termination of active transactions.