CVE-2026-22099
Severity CVSS v4.0:
HIGH
Type:
CWE-287
Authentication Issues
Publication date:
13/07/2026
Last modified:
13/07/2026
Description
The charging station does not require authentication for Bluetooth commands to perform actions. The functionality exposed includes sensitive information leakage, triggering reboots, or pushing a firmware update URL.
Impact
Base Score 4.0
8.70
Severity 4.0
HIGH



