CVE-2019-9160

CVE-2019-9160

WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a backdoor account allowing a remote attacker to login to the system via SSH (on TCP port 22345) and escalate to root (because the password for root is the WebUI admin password concatenated with a static string).

Source: CVE-2019-9160

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다