Vendor
Kankun
Products
3
CVEs
2
Across products
2
Status
Private
Products
3- 1 CVE
- 1 CVE
- 0 CVEs
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2014-7279 | Cri | 0.68 | 9.8 | 0.12 | Mar 23, 2017 | The Konke Smart Plug K does not require authentication for TELNET sessions, which allows remote attackers to obtain "equipment management authority" via TCP traffic to port 23. | ||
| CVE-2015-4080 | 0.00 | — | 0.02 | Jun 9, 2015 | The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to (1) obtain sensitive information by sniffing the network and (2) obtain access to the device by encrypting messages. |
- risk 0.68cvss 9.8epss 0.12
The Konke Smart Plug K does not require authentication for TELNET sessions, which allows remote attackers to obtain "equipment management authority" via TCP traffic to port 23.
- CVE-2015-4080Jun 9, 2015risk 0.00cvss —epss 0.02
The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to (1) obtain sensitive information by sniffing the network and (2) obtain access to the device by encrypting messages.