CVE-2019-9160
The CVE-2019-9160 issue affects Sangfor Sundray/WAC, specifically version 3.7.4.2 and earlier. It enables a backdoor SSH login on TCP 22345, allowing remote access beyond the WebUI and enabling root escalation because the root password is the WebUI admin password concatenated with a static string...