Browse all 3 CVE security advisories affecting Kaon. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Kaon is an interactive digital solutions provider creating immersive presentations and virtual experiences for enterprise clients. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, primarily affecting web-based components and content management systems. Security researchers have identified authentication bypass flaws and insecure direct object references in their platforms. While no major public security incidents have been widely reported, the three CVEs on record highlight recurring issues in input validation and access control, suggesting a need for enhanced security testing in their development lifecycle. Their interactive nature increases attack surface, particularly for client-side vulnerabilities in rich media applications.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-7072 | Hardcoded credentials in KAON CG3000T/CG3000CT routers — CG3000TCWE-798 | 9.8 | - | 2026-01-09 |
| CVE-2025-51381 | KAON KCM3100 安全漏洞 — KCM3100CWE-288 | 8.8AI | HighAI | 2025-06-18 |
| CVE-2024-8693 | Kaon CG3000 dhcpcd Command cross site scripting — CG3000CWE-79 | 2.4 | Low | 2024-09-11 |
This page lists every published CVE security advisory associated with Kaon. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.