2 matches found
IDenticard PremiSys (Update A)
1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit/vulnerability details have been publicly disclosed Vendor: IDenticard Equipment: PremiSys Vulnerabilities: Use of Hard-coded Credentials, Use of Hard-coded Password, Inadequate Encryption Strength 2...
CVE-2019-3908
CVE-2019-3908 affects Premisys Identicard v3.1.190 where backups are stored as encrypted zip files with a hard-coded, non-changeable password, enabling decrypting backups if accessible. The ICSA/ICS-CERT advisory confirms the vulnerability class and that versions prior to 4.2 are affected; mitiga...