Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
ThroughTek's Kalay Platform 2.0 network allows an attacker to impersonate an arbitrary ThroughTek (TUTK) device given a valid 20-byte uniquely assigned identifier (UID). This could result in an attacker hijacking a victim's connection and forcing them into supplying credentials needed to access the victim TUTK device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ThroughTek Kalay Platform 访问控制错误漏洞
Vulnerability Description
throughtek ThroughTek Kalay Platform是中国物联智慧股份有限公司(throughtek)公司的一个应用软件。利用 P2P 技术启用 Kalay Cloud Platform 服务。 ThroughTek Kalay Platform 中存在访问控制错误漏洞,该漏洞源于产品网络允许通过20字节的UUID冒充ThroughTek设备。攻击者可通过该漏洞获得用户的访问凭据。以下产品及版本受到影响:ThroughTek Kalay P2P SDK 3.1.5 版本及之前版本。
CVSS Information
N/A
Vulnerability Type
N/A