CVE-2019-9160

Name of the Vulnerable Software and Affected Versions Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier

Description The issue allows a remote attacker to login to the system via SSH on TCP port 22345 and escalate to root. This is possible due to a backdoor account. The password for root is the WebUI admin password concatenated with a static string.

Recommendations For Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier, consider changing the WebUI admin password and the root password to prevent escalation. As a temporary workaround, restrict access to SSH on TCP port 22345 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.