Web Mapping Platform Exposure in Charging Stations by Mobiliti
CVE-2026-27777

6.9MEDIUM

Key Information:

Vendor: Mobiliti
Status: E-mobi.hu
Vendor: CVE Published:; 6 March 2026

What is CVE-2026-27777?

The vulnerability allows unauthorized access to sensitive authentication identifiers of charging stations through web-based mapping platforms. This exposure can lead to potential misuse by malicious actors, enabling them to manipulate station interactions or access secured features without proper authorization. Proper security measures must be adopted to safeguard these identifiers and bolster the overall integrity of the charging station systems.

Affected Version(s)

e-mobi.hu All versions

References

https://mobiliti.hu/emobilitas/ugyfeltamogatas/ugyfelszol...

https://www.cisa.gov/news-events/ics-advisories/icsa-26-0...

https://github.com/cisagov/CSAF/blob/develop/csaf_files/O...

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 6, 2026
Vulnerability Reserved
Feb 24, 2026

Credit

Khaled Sarieddine and Mohammad Ali Sayed reported this vulnerability to CISA.

CVE-2026-27777 Data

JSON