EVerest’s use of assert functions can potentially lead to denial...

7.4 / 10

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Description

EVerest is an EV charging software stack. Prior to version 2025.10.0, the use of the `assert` function to handle errors frequently causes the module to crash. This is particularly critical because the manager shuts down all other modules and exits when any one of them terminates, leading to a denial of service. In a context where a manager handles multiple EVSE, this would also impact other users. Version 2025.10.0 fixes the issue.

Basic Information

ID CVE-2025-68134

Source GitHub_M

Published Jan 21, 2026 at 18:32

Modified Jan 21, 2026 at 19:03

Affected Product

Vendor EVerest

Product everest-core

Version < 2025.10.0

Affected Versions EVerest everest-core < 2025.10.0

CWE Classification

CWE-20

References

github.com /EVerest/everest-core/security/advisories/GHSA-cxc5-rrj5-8pf3

{
    "lastseen": "",
    "description": "EVerest is an EV charging software stack. Prior to version 2025.10.0, the use of the `assert` function to handle errors frequently causes the module to crash. This is particularly critical because the manager shuts down all other modules and exits when any one of them terminates, leading to a denial of service. In a context where a manager handles multiple EVSE, this would also impact other users. Version 2025.10.0 fixes the issue.",
    "published": "2026-01-21T18:32:13.882Z",
    "modified": "2026-01-21T19:03:47.370Z",
    "type": "cve",
    "title": "EVerest's use of assert functions can potentially lead to denial of service",
    "source": "GitHub_M",
    "references": "https://github.com/EVerest/everest-core/security/advisories/GHSA-cxc5-rrj5-8pf3",
    "id": "CVE-2025-68134",
    "bulletinFamily": "",
    "cwe": [
        "CWE-20"
    ],
    "cvelist": null,
    "sourceData": "EVerest everest-core < 2025.10.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.4,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "everest-core",
    "version": "< 2025.10.0",
    "vendor": "EVerest",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

EVerest’s use of assert functions can potentially lead to denial of service_CVE-2025-68134