Everest — CraftedSignal Threat Feedhttps://feed.craftedsignal.io/tags/everest/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioFri, 27 Mar 2026 12:00:00 +0000EVerest CAN Interface Stack Buffer Overflow Vulnerability (CVE-2026-23995)https://feed.craftedsignal.io/briefs/2026-03-everest-can-overflow/Fri, 27 Mar 2026 12:00:00 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-everest-can-overflow/A stack-based buffer overflow vulnerability exists in EVerest EV charging software stack versions prior to 2026.02.0. Passing an interface name longer than 16 characters to CAN open routines overflows `ifreq.ifr_name`, potentially leading to code execution.<p>EVerest is an open-source software stack for electric vehicle (EV) charging infrastructure. A stack-based buffer overflow vulnerability, tracked as CVE-2026-23995, affects versions prior to 2026.02.0. The vulnerability stems from improper handling of CAN (Controller Area Network) interface names during initialization. Specifically, when an interface name exceeding IFNAMSIZ (16 bytes) is supplied to CAN open routines, the <code>ifreq.ifr_name</code> buffer overflows, potentially corrupting adjacent stack…</p> highadvisoryeverestbuffer-overflowcve-2026-23995ev-chargingEVerest EV Charging Stack Data Race Vulnerability (CVE-2026-26074)https://feed.craftedsignal.io/briefs/2026-03-everest-data-race/Thu, 26 Mar 2026 17:16:33 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-everest-data-race/EVerest versions prior to 2026.02.0 exhibit a data race vulnerability (CVE-2026-26074) where concurrent network requests and physical events can corrupt the event queue, leading to potential denial of service or other undefined behavior.EVerest, an EV charging software stack, is susceptible to a data race vulnerability identified as CVE-2026-26074. This flaw affects versions prior to 2026.02.0. The vulnerability arises from concurrent access to the event_queue, specifically a std::map<std::queue>, when a CSMS (Charging Station Management System) GetLog or UpdateFirmware request (originating from the network) coincides with an EVSE (Electric Vehicle Supply Equipment) fault event (a physical occurrence). This combination of…

]]>mediumadvisorycve-2026-26074data-raceev-chargingeverestEVerest EV Charging Stack Remote Code Execution via Stack Buffer Overflow (CVE-2026-22790)https://feed.craftedsignal.io/briefs/2026-03-everest-rce/Thu, 26 Mar 2026 15:16:31 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-everest-rce/EVerest versions before 2026.02.0 are vulnerable to a stack-based buffer overflow (CVE-2026-22790) in the `HomeplugMessage::setup_payload` function, enabling remote code execution via network frames with oversized SLAC payloads.EVerest is an open-source software stack designed for managing EV charging infrastructure. Prior to version 2026.02.0, a critical vulnerability exists within the HomeplugMessage::setup_payload function. Specifically, the code trusts the len parameter after an assert statement during the processing of SLAC (Signal Level Attenuation Characterization) payloads. In release builds, the assert check is removed, which allows an attacker to send network frames with oversized SLAC payloads. This…

]]>criticaladvisoryeverestrcebuffer-overflowcve-2026-22790