Hardy Barth Salia EV Charge Controller Vulnerabilities, 2 CVEs, CVSS 7.3
Summary
CISA ICS-CERT published an advisory disclosing two vulnerabilities in the Hardy Barth Salia EV Charge Controller affecting firmware version 2.3.81 and earlier. CVE-2025-5873 (CVSS 6.3) and CVE-2025-10371 (CVSS 7.3) both involve unrestricted file upload vulnerabilities in the web interface component that could allow remote code execution. The vulnerabilities affect Energy and Transportation Systems critical infrastructure sectors deployed worldwide. Public proof-of-concept exploits have been disclosed; Hardy Barth did not respond to CISA's coordination requests.
“Successful exploitation of these vulnerabilities could crash the device being accessed; a buffer overflow condition may allow remote code execution.”
What changed
CISA disclosed two unrestricted file upload vulnerabilities (CWE-434) in Hardy Barth Salia EV Charge Controller firmware. The vulnerabilities affect the /firmware.php and /api.php web interface components, potentially allowing remote code execution through malicious file uploads. Public exploits are available and the vendor has not responded to coordination requests, indicating no vendor-provided patch at this time.
Organizations operating affected Hardy Barth Salia EV Charge Controllers in Energy and Transportation Systems critical infrastructure should immediately review network exposure, implement network isolation behind firewalls, and use secure remote access methods such as VPNs. Organizations should contact Hardy Barth directly for specific mitigation guidance since CISA was unable to coordinate a vendor patch.
What to do next
- Contact Hardy Barth using their contact page here: https://www.hardy-barth.de/de/kontakt for more information.
- Contact Hardy Barth through their eCharge brand here: https://www.echarge.de/en/contact_company
Archived snapshot
Apr 22, 2026GovPing captured this document from the original source. If the source has since changed or been removed, this is the text as it existed at that time.
ICS Advisory
Hardy Barth Salia EV Charge Controller
Release Date
April 21, 2026
Alert Code ICSA-26-111-05 Related topics: Industrial Control System Vulnerabilities, Industrial Control Systems View CSAF
Summary
Successful exploitation of these vulnerabilities could crash the device being accessed; a buffer overflow condition may allow remote code execution.
The following versions of Hardy Barth Salia EV Charge Controller are affected:
- Salia Board Firmware <=2.3.81 (CVE-2025-5873, CVE-2025-10371)
| CVSS | Vendor | Equipment | Vulnerabilities |
|---|---|---|---|
| v3 7.3 | Hardy Barth | Hardy Barth Salia EV Charge Controller | Unrestricted Upload of File with Dangerous Type |
Background
- Critical Infrastructure Sectors: Energy, Transportation Systems
- Countries/Areas Deployed: Worldwide
- Company Headquarters Location: Germany
Vulnerabilities
A vulnerability was found in eCharge Hardy Barth Salia PLCC 2.3.81. It has been declared as critical. This vulnerability affects unknown code of the file /firmware.php of the component Web UI. The manipulation of the argument media leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Affected Products
Hardy Barth Salia EV Charge Controller
Vendor:
Hardy Barth Product Version:
Hardy Barth Salia Board Firmware: <=2.3.81 Product Status:
known_affected
Remediations
Mitigation
Hardy Barth did not respond to CISA's request for coordination.
Mitigation
Contact Hardy Barth using their contact page here: https://www.hardy-barth.de/de/kontakt for more information.
https://www.hardy-barth.de/de/kontakt
Mitigation
Alternatively, Hardy Barth can also be contacted through their eCharge brand here: https://www.echarge.de/en/contact_company
https://www.echarge.de/en/contact_company
Relevant CWE: CWE-434 Unrestricted Upload of File with Dangerous Type
Metrics
| CVSS Version | Base Score | Base Severity | Vector String |
|---|---|---|---|
| 3.1 | 6.3 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
A security flaw has been discovered in eCharge Hardy Barth Salia PLCC 2.3.81. This issue affects some unknown processing of the file /api.php. The manipulation of the argument setrfidlist results in unrestricted upload. The attack may be performed from remote. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Affected Products
Hardy Barth Salia EV Charge Controller
Vendor:
Hardy Barth Product Version:
Hardy Barth Salia Board Firmware: <=2.3.81 Product Status:
known_affected
Remediations
Mitigation
Hardy Barth did not respond to CISA's request for coordination.
Mitigation
Contact Hardy Barth using their contact page here: https://www.hardy-barth.de/de/kontakt for more information.
https://www.hardy-barth.de/de/kontakt
Mitigation
Alternatively, Hardy Barth can also be contacted through their eCharge brand here: https://www.echarge.de/en/contact_company
https://www.echarge.de/en/contact_company
Relevant CWE: CWE-434 Unrestricted Upload of File with Dangerous Type
Metrics
| --- | --- | --- | --- |
| 3.1 | 7.3 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
Acknowledgments
- CISA discovered a public Proof of Concept (PoC) as authored by YZS17 and reported it to Hardy Barth
Legal Notice and Terms of Use
This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy & Use policy (https://www.cisa.gov/privacy-policy).
Recommended Practices
CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities.
Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the Internet.
Locate control system networks and remote devices behind firewalls and isolating them from business networks.
When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize VPN is only as secure as the connected devices.
CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.
Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
No known public exploitation specifically targeting these vulnerabilities has been reported to CISA at this time.
Revision History
- Initial Release Date: 2026-04-21
| Date | Revision | Summary |
|---|---|---|
| 2026-04-21 | 1 | Initial Publication |
Legal Notice and Terms of Use
This product is provided subject to this Notification and this Privacy & Use policy.
Tags
Sector: Energy Sector, Transportation Systems Sector Topics: Industrial Control System Vulnerabilities, Industrial Control Systems
Please share your thoughts
We recently updated our anonymous product survey; we welcome your feedback.
Related Advisories
Apr 21, 2026
ICS Advisory | ICSA-26-111-04
Siemens Analytics Toolkit
Apr 21, 2026
ICS Advisory | ICSA-26-111-02
Siemens RUGGEDCOM CROSSBOW Secure Access Manager Primary
Apr 21, 2026
ICS Advisory | ICSA-26-111-03
Siemens SINEC NMS
Apr 21, 2026
ICS Advisory | ICSA-26-111-12
SenseLive X3050
Mentioned entities
Related changes
Get daily alerts for CISA ICS-CERT Advisories
Daily digest delivered to your inbox.
Free. Unsubscribe anytime.
About this page
Every important government, regulator, and court update from around the world. One place. Real-time. Free. Our mission
Source document text, dates, docket IDs, and authority are extracted directly from CISA.
The summary, classification, recommended actions, deadlines, and penalty information are AI-generated from the original text and may contain errors. Always verify against the source document.
Classification
Who this affects
Taxonomy
Browse Categories
Get alerts for this source
We'll email you when CISA ICS-CERT Advisories publishes new changes.
Subscribed!
Optional. Filters your digest to exactly the updates that matter to you.