CVE-2026-9398

Name of the Vulnerable Software and Affected Versions Besen BS20 EV Charging Station versions prior to 20260426

Description A security issue exists in the BLE/WiFi component that allows for an authentication bypass via a capture-replay attack. This type of attack, where a valid transmission is recorded and later re-sent to deceive a system, requires the attacker to be within the local network. Exploitation is considered highly complex and difficult.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.