An issue was discovered in Infinera hiT 7300 5.60.50. Undocumented privileged functions in the @CT management application allow an attacker to activate remote SSH access to the appliance via an unexpected network interface.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.