Skip to main content

Konke Smart Plug Firmware

1 CVEs product

Monthly

CVE-2014-7279 CRITICAL POC THREAT Emergency

The Konke Smart Plug K does not require authentication for TELNET sessions, which allows remote attackers to obtain "equipment management authority" via TCP traffic to port 23. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 51.6%.

Privilege Escalation Konke Smart Plug Firmware
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
51.6%
Threat
5.0
EPSS 52% 5.0 CVSS 9.8
CRITICAL POC THREAT Emergency

The Konke Smart Plug K does not require authentication for TELNET sessions, which allows remote attackers to obtain "equipment management authority" via TCP traffic to port 23. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 51.6%.

Privilege Escalation Konke Smart Plug Firmware
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy