high advisory March 27, 2026

EVerest Out-of-Bounds Access Vulnerability (CVE-2026-26008)

EVerest, an EV charging software stack, has an out-of-bounds access vulnerability in versions prior to 2026.02.0, which can lead to remote crash or memory corruption when the CSMS sends UpdateAllowedEnergyTransferModes over the network.

EVerest is an EV charging software stack used for managing electric vehicle charging infrastructure. Versions prior to 2026.02.0 are vulnerable to an out-of-bounds access issue (CVE-2026-26008) that can be triggered remotely. The vulnerability stems from how the Central System Management System (CSMS) handles the UpdateAllowedEnergyTransferModes message over the network. Successful exploitation can lead to a crash of the EVerest software or memory corruption, potentially disrupting EV…

Detection coverage 2

Detect Suspicious UpdateAllowedEnergyTransferModes Messages

high

Detects potentially malicious UpdateAllowedEnergyTransferModes messages sent to EVerest instances.

sigma tactics: denial_of_service techniques: T1499.001 sources: network_connection, linux

EVerest Process Crash

medium

Detects potential EVerest process crashes based on system logs.

sigma tactics: denial_of_service techniques: T1499.001 sources: system, linux

Detection queries are kept inside the platform. Get full rules →

Indicators of compromise

url