2 matches found
CVE-2015-4080
CVE-2015-4080 affects the Kankun Smart Socket device and its mobile app. The vulnerability stems from a hardcoded AES-256 key used to encrypt communications, enabling remote attackers on the local network to sniff traffic and potentially encrypt messages to gain access to the device. Public sourc...
Kankun Smart Socket / Mobile App Hardcoded AES Key
Hi List, Vulnerability ============= Hardcoded AES 256 bit key used in Kankun IoT/Smart socket and its mobile App Vulnerability Description ========================== The kankun smart socket device and the mobile app use a hardcoded AES 256 bit key to encrypt the commands and responses between th...