CNNVD-202509-3570 Information

CNNVD ID

CNNVD-202509-3570

Related CVE

CVE-2025-57601

• CNNVD Published: 2025-09-22

Description (Chinese)

AiKaan Cloud Controller是印度AiKaan公司的一款用于互联网边缘设备的监控平台。 AiKaan Cloud Controller存在安全漏洞，该漏洞源于使用硬编码SSH私钥和用户名proxyuser进行远程终端访问，可能导致攻击者冒充受管设备并建立未经授权的反向SSH隧道。

Description (English)

AiKaan Cloud Controller is a monitoring platform for Internet peripherals for AiKaan in India. There is a security loophole in AiKaan Cloud Controller, which stems from remote terminal access using a hard-coded SSH private key and username proxyuser, which could lead to the attacker impersonating controlled equipment and establishing an unauthorized reverse SSH tunnel.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Aikaan

Published

2025-09-22

Last Modified

2026-02-24

References

https://github.com/Shubhangborkar/aikaan-vulnerabilities/blob/main/cve1-shared-ssh-key.md https://access.redhat.com/security/cve/cve-2025-57601