CVE-2026-22099

Severity CVSS v4.0:
HIGH
Type:
CWE-287 Authentication Issues
Publication date:
13/07/2026
Last modified:
13/07/2026

Description

The charging station does not require authentication for Bluetooth commands to perform actions. The functionality exposed includes sensitive information leakage, triggering reboots, or pushing a firmware update URL.

References to Advisories, Solutions, and Tools