Severity:
CRITICAL RISK
(9.4)
Missing Authentication (CWE-306) on OCPP WebSocket Charging Endpoints
CVE-2026-24731
Published:
Feb 26, 2026
Status:
Modified
Summary
Affected Context
Exploit Preconditions
Why This Happens
Potential Impact
General Mitigation Guidance
How Teams Detect Issues Like This
Frequently Asked Questions
Source
NDV
