A vulnerability has been found in ChargePoint Home Flex and classified as critical . The impacted element is an unknown function of the component revssh Service . The manipulation leads to command injection. This vulnerability is uniquely identified as CVE-2026-4157 . The attack can only be initiated within the local network. No exploit exists. The affected component should be upgraded.