CVE-2026-4157 | ChargePoint Home Flex revssh Service command injection

Inserito da Angelo Barbosa | Mar 17, 2026 | CVE

A vulnerability has been found in ChargePoint Home Flex and classified as critical. The impacted element is an unknown function of the component revssh Service. The manipulation leads to command injection.

This vulnerability is uniquely identified as CVE-2026-4157. The attack can only be initiated within the local network. No exploit exists.

The affected component should be upgraded.

CVE-2026-4157 | ChargePoint Home Flex revssh Service command injection

Post correlati

CVE-2023-31728 | Teltonika RUT240 prior 07.04.2 Bridge MOde access control

CVE-2025-9083 | Ninja Forms Plugin up to 3.11.0 on WordPress deserialization

CVE-2026-2952 | Vaelsys 4.1.0 HTTP POST Request /tree/tree_server.php xajaxargs os command injection

CVE-2024-5823 | gaizhenbiao ChuanhuChatGPT up to 20240410 Setting file inclusion