ByteOS Network

CVE Vulnerability Details :

CVE-2026-20733

PUBLISHED

More Info Official Page

Assigner-icscert

Assigner Org ID-7d14cffa-0d7d-4270-9dc0-52cabd5a23a6

Published At-26 Feb, 2026 | 23:38

Updated At-26 Feb, 2026 | 23:38

▼CVE Numbering Authority (CNA)

CloudCharge cloudcharge.se Insufficiently Protected Credentials

Charging station authentication identifiers are publicly accessible via web-based mapping platforms.

Affected Products

Vendor

CloudCharge

Product

cloudcharge.se

Default Status

unaffected

Versions

Affected

All versions

Problem Types

Type	CWE ID	Description
CWE	CWE-522	CWE-522 Insufficiently Protected Credentials

Type: CWE

CWE ID: CWE-522

Description: CWE-522 Insufficiently Protected Credentials

Metrics

Version	Base score	Base severity	Vector
3.1	6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Workarounds

CloudCharge did not respond to CISA's request for coordination. Contact CloudCharge using their contact page here: https://cloudcharge.tech/support/contact/ for more information.

Credits

finder

Khaled Sarieddine and Mohammad Ali Sayed reported this vulnerability to CISA.

References

Hyperlink	Resource
https://cloudcharge.tech/support/contact/	N/A
https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-03	N/A
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-057-03.json	N/A

Hyperlink: https://cloudcharge.tech/support/contact/

Resource: N/A

Hyperlink: https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-03

Resource: N/A

Hyperlink: https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-057-03.json

Resource: N/A

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References