Описание
The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to (1) obtain sensitive information by sniffing the network and (2) obtain access to the device by encrypting messages.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:h:kankun:smartsocket:*:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00666
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-310
Связанные уязвимости
github
больше 3 лет назад
The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to (1) obtain sensitive information by sniffing the network and (2) obtain access to the device by encrypting messages.
EPSS
Процентиль: 71%
0.00666
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-310