CVE-2025-57601 (CNNVD-202509-3570)
中文标题:
AiKaan Cloud Controller 安全漏洞
英文标题:
AiKaan Cloud Controller uses a single hardcoded SSH private key and the username `proxyuser` for rem...
漏洞描述
中文描述:
AiKaan Cloud Controller是印度AiKaan公司的一款用于互联网边缘设备的监控平台。 AiKaan Cloud Controller存在安全漏洞,该漏洞源于使用硬编码SSH私钥和用户名proxyuser进行远程终端访问,可能导致攻击者冒充受管设备并建立未经授权的反向SSH隧道。
英文描述:
AiKaan Cloud Controller uses a single hardcoded SSH private key and the username `proxyuser` for remote terminal access to all managed IoT/edge devices. When an administrator initiates "Open Remote Terminal" from the AiKaan dashboard, the controller sends this same static private key to the target device. The device then uses it to establish a reverse SSH tunnel to a remote access server, enabling browser-based SSH access for the administrator. Because the same `proxyuser` account and SSH key are reused across all customer environments: - An attacker who obtains the key (e.g., by intercepting it in transit, extracting it from the remote access server, or from a compromised admin account) can impersonate any managed device. - They can establish unauthorized reverse SSH tunnels and interact with devices without the owner's consent. This is a design flaw in the authentication model: compromise of a single key compromises the trust boundary between the controller and devices.
CWE类型:
标签:
受影响产品
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
CVSS评分详情
3.1 (adp)
CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2025-57601 |
2025-11-11 15:23:30 | 2025-11-11 07:40:44 |
| NVD | nvd_CVE-2025-57601 |
2025-11-11 15:01:03 | 2025-11-11 07:48:31 |
| CNNVD | cnnvd_CNNVD-202509-3570 |
2025-11-11 15:12:58 | 2025-11-11 08:00:13 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 其他
- cnnvd_id: 未提取 -> CNNVD-202509-3570
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- data_sources: ['cve'] -> ['cve', 'nvd']