Autel MaxiCharger AC Elite Home 40A NFC-triggered buffer overflow security flaw
VulnerabilityFirst reported
Last updated
Happening score
H score
20
Summary
Hide ▲
Show ▼
A buffer overflow in the Autel MaxiCharger AC Elite Home 40A was demonstrated as a device-takeover path, exposing an exploitable weakness in an EV charger. The exploit was triggered with an NFC card, showing that close-range interaction can be enough to compromise the charger. The finding matters because charging infrastructure has a broad attack surface and can affect vehicle operations.
Timeline
-
23.01.2026 23:04 2 articles · 4mo ago
NFC-triggered takeover of Autel EV charger
Initial DisclosureA Synacktiv security researcher demonstrated an NFC-triggered buffer overflow against the Autel MaxiCharger AC Elite Home 40A at Pwn2Own Tokyo, using a simple card swipe to compromise the EV charger and take over its automotive system.
Show sources
- Swipe, Plug-in, Pwned: Researchers Find New Ways to Hack Vehicles — www.darkreading.com — 23.01.2026 23:04
- Swipe, Plug-in, Pwned: Researchers Find New Ways to Hack Vehicles — www.darkreading.com — 23.01.2026 23:04