Lucene search
PRIOn knowledge basePRION:CVE-2019-9160HistoryApr 18, 2019 - 10:29 p.m.
Design/Logic Flaw
2019-04-1822:29:00
PRIOn knowledge base
www.prio-n.com
6
WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a backdoor account allowing a remote attacker to login to the system via SSH (on TCP port 22345) and escalate to root (because the password for root is the WebUI admin password concatenated with a static string).
| CPE | Name | Operator | Version |
|---|---|---|---|
| sundray_wan_controller_firmware | le | 3.7.4.2 |
Related
cve
cve
CVE-2019-9160
2019-04-18 22:29:00
cvelist
cvelist
CVE-2019-9160
2019-04-18 21:58:00
nvd
nvd
CVE-2019-9160
2019-04-18 22:29:00