CVE 9.2 CRITICAL

DENIAL OF SERVICE VIA ARP PACKETS_CVE-2026-22540

January 7, 2026 invoker category_cve

9.2 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H

Description

The massive sending of ARP requests causes a denial of service on one board of the charger that allows control of the EV interfaces. Since the board must be operating correctly for the charger to also function correctly.

AI Analysis

Denial of Service via ARP packets on EFACEC QC60/90/120 8

Basic Information

ID CVE-2026-22540

Source S21sec

Published Jan 7, 2026 at 14:16

Modified Jan 7, 2026 at 15:02

Affected Product

Vendor EFACEC

Product QC60/90/120

Version 8

Affected Versions EFACEC QC60/90/120 8

CWE Classification

CWE-400

AI Assessment

AI Score 9.2 / 10

AI Severity Critical

Vendor EFACEC

Product QC60/90/120

Version 8

References

cds.thalesgroup.com /en

{
    "lastseen": "",
    "description": "The massive sending of ARP requests causes a denial of service on one board of the charger that allows control of the EV interfaces. Since the board must be operating correctly for the charger to also function correctly.",
    "published": "2026-01-07T14:16:32.682Z",
    "modified": "2026-01-07T15:02:48.203Z",
    "type": "cve",
    "title": "DENIAL OF SERVICE VIA ARP PACKETS",
    "source": "S21sec",
    "references": "https://cds.thalesgroup.com/en",
    "id": "CVE-2026-22540",
    "bulletinFamily": "",
    "cwe": [
        "CWE-400"
    ],
    "cvelist": null,
    "sourceData": "EFACEC QC60/90/120 8",
    "sourceHref": "",
    "cvss": {
        "score": 9.2,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "QC60/90/120",
    "version": "8",
    "vendor": "EFACEC",
    "ai_description": "Denial of Service via ARP packets on EFACEC QC60/90/120 8",
    "ai_severity": "Critical",
    "ai_vendor": "EFACEC",
    "ai_product": "QC60/90/120",
    "ai_version": "8",
    "ai_score": 9.2
}

💭 Join the Security Discussion ❌ Cancel Reply