CVE-2025-27769 LOW

CVE-2025-27769

Vendor Siemens
Product Heliox Flex 180 kW EV Charging Station
Weakness CWE-923
Published March 10, 2026
Last update March 10, 2026

CVSS base score

2.6/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

What the vulnerability does

01Description

A vulnerability has been identified in Heliox Flex 180 kW EV Charging Station (All versions < F4.11.1), Heliox Mobile DC 40 kW EV Charging Station (All versions < L4.10.1). Affected devices contain improper access control that could allow an attacker to reach unauthorized services via the charging cable.

Key dates

02Disclosure timeline

March 10, 2026 CVE published
March 10, 2026 Record updated