Unrated severityNVD Advisory· Published Jun 9, 2015· Updated Jun 17, 2026

CVE-2015-4080

Description

The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to (1) obtain sensitive information by sniffing the network and (2) obtain access to the device by encrypting messages.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Kankun/Smartsocket2 versions
cpe:2.3:h:kankun:smartsocket:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:kankun:smartsocket:*:*:*:*:*:*:*:*
- (no CPE)

Patches

Vulnerability mechanics

References

packetstormsecurity.com/files/132210/Kankun-Smart-Socket-Mobile-App-Hardcoded-AES-Key.htmlnvd
www.securityfocus.com/archive/1/535702/100/0/threadednvd
www.securityfocus.com/bid/75057nvd
plus.google.com/109112844319840106704/postsnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000