Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Insufficient hardening of the proxyuser account in the AiKaan IoT management platform, combined with the use of a shared, hardcoded SSH private key, allows remote attackers to authenticate to the cloud controller, gain interactive shell access, and pivot into other connected IoT devices. This can lead to remote code execution, information disclosure, and privilege escalation across customer environments.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
AiKaan IoT management platform 安全漏洞
Vulnerability Description
Aikaan IoT management platform是印度Aikaan公司的一个管理平台。 AiKaan IoT management platform存在安全漏洞,该漏洞源于proxyuser账户加固不足和使用了共享的硬编码SSH私钥,可能导致远程代码执行、信息泄露和权限提升。
CVSS Information
N/A
Vulnerability Type
N/A