CVE-2019-7672

2019-06-0518:49:42

mitre

www.cve.org

8.6 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.0%

JSON

Prima Systems FlexAir, Versions 2.3.38 and prior. The flash version of the web interface contains a hard-coded username and password, which may allow an authenticated attacker to escalate privileges.

References

applied-risk.com/index.php/download_file/view/199/165

applied-risk.com/labs/advisories

applied-risk.com/resources/ar-2019-007

www.us-cert.gov/ics/advisories/icsa-19-211-02