CVE-2026-40702
WebSocket Endpoints Allow Unauthorized Access to Charging Station Data.
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A critical vulnerability exists in WebSocket endpoints that lack proper authentication, allowing attackers to impersonate charging stations. This could lead to unauthorized access to sensitive data or system actions, potentially resulting in privilege escalation and a compromise of system security. The issue is relevan