Login Sign Up

CVE-2025-68134

7.4 HIGH
Denial of Service

📋 TL;DR

This vulnerability in EVerest EV charging software allows attackers to cause denial of service by triggering assertion failures that crash individual modules. When any module crashes, the manager shuts down all other modules and exits, disrupting charging services for all users. This affects all EVerest deployments prior to version 2025.10.0.

💻 Affected Systems

Products:
  • EVerest EV charging software stack
Versions: All versions prior to 2025.10.0
Operating Systems: Linux-based systems running EVerest
Default Config Vulnerable: ⚠️ Yes
Notes: All default configurations are vulnerable as the issue is in the core error handling mechanism using assert() function.

📦 What is this software?

Everest by Linuxfoundation

View all CVEs affecting Everest →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete shutdown of all EV charging stations managed by the vulnerable system, potentially affecting multiple locations simultaneously and causing significant service disruption.

🟠

Likely Case

Intermittent service outages affecting multiple EV charging stations when assertion failures are triggered, leading to user complaints and operational disruption.

🟢

If Mitigated

Limited impact to individual modules with proper monitoring and restart mechanisms in place, though service interruptions may still occur.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires triggering assertion failures through normal or malformed inputs to the system.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 2025.10.0

Vendor Advisory: https://github.com/EVerest/everest-core/security/advisories/GHSA-cxc5-rrj5-8pf3

Restart Required: Yes

Instructions:

1. Backup current configuration and data. 2. Stop all EVerest services. 3. Update to version 2025.10.0 using your package manager or manual installation. 4. Restart EVerest services. 5. Verify all modules are running correctly.

🔧 Temporary Workarounds

Disable assertion failures

linux

Compile EVerest with NDEBUG flag to disable assert() function calls, though this may hide other issues.

export CFLAGS="-DNDEBUG"
./configure
make clean
make
make install

🧯 If You Can't Patch

  • Implement monitoring to detect and restart crashed modules automatically.
  • Isolate vulnerable systems from untrusted networks and implement strict input validation.

🔍 How to Verify

Check if Vulnerable:

Check EVerest version with: everest --version or check installed package version.

Check Version:

everest --version

Verify Fix Applied:

Verify version is 2025.10.0 or later and test error conditions to ensure graceful handling instead of crashes.

📡 Detection & Monitoring

Log Indicators:

  • Module crash logs with assertion failure messages
  • Manager shutdown logs indicating module termination
  • Abnormal service restarts

Network Indicators:

  • Sudden loss of connectivity to charging stations
  • Unusual error responses from charging APIs

SIEM Query:

source="everest.log" AND ("assertion failed" OR "module terminated" OR "manager shutdown")

📊 Metadata

CVE ID: CVE-2025-68134
CVSS v3 Score: 7.4 (HIGH)
CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CWE: CWE-20
EPSS Score: 0.04% exploit probability (11.6th percentile)
Published: January 21, 2026
Last Updated: February 6, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-68134, you might also want to check these:

CVE-2022-47190 10.0

CVE-2022-47190 allows remote attackers to upload malicious firmware containing a webshell to Generex...

Same vulnerability type (CWE-20)
CVE-2024-3400 10.0

CVE-2024-3400 is a critical command injection vulnerability in Palo Alto Networks PAN-OS GlobalProte...

Same vulnerability type (CWE-20)
CVE-2023-42802 10.0

This critical vulnerability in GLPI allows attackers to upload malicious PHP files to unauthorized d...

Same vulnerability type (CWE-20)