Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a Remote Code Execution issue allowing remote attackers to achieve full access to the system, because shell metacharacters in the nginx_webconsole.php Cookie header can be used to read an etc/config/wac/wns_cfg_admin_detail.xml file containing the admin password. (The password for root is the WebUI admin password concatenated with a static string.)
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sundray WLAN Controller 命令注入漏洞
Vulnerability Description
Sundray WLAN Controller(信锐WAC)是中国信锐网科技术(Sundray)公司的一套无线局域网控制器软件。 信锐WAC 3.0至WAC3.7.4.2版本中的WAC存在安全漏洞。远程攻击者可借助nginx_webconsole.php包头中的shell元字符读取带有admin密码的etc/config/wac/wns_cfg_admin_detail.xml文件利用该漏洞获取系统的全部权限。
CVSS Information
N/A
Vulnerability Type
N/A