Command Execution Vulnerability in the Operation and Maintenance Audit System of Beijing COSCO Kirin Technology Co. Ltd (CNVD-2022-53245)

COSCO KyLin Technology Co., Ltd. is a R&D-oriented software development company, the company’s main products are COSCO KyLin Barrier Machine, KyLin SSL VPN, KyLin Dynamic Password System, KyLin Cloud Desktop and so on. Our main products are COSCO Kirin SSL VPN, Kirin Dynamic Password System, Kirin Cloud Desktop and so on. COSCO Kirin Barrier Machine is mainly operated in Tencent Cloud, Aliyun, Huawei Cloud, Wave Cloud and so on. A command execution vulnerability exists in the operation and maintenance audit system of Beijing COSCO Kirin Technology Company Limited, which can be exploited by attackers to gain control of the server.