Skip to main content

Premisys Id

4 CVEs product

Monthly

CVE-2019-3909 CRITICAL Act Now

Premisys Identicard version 3.1.190 database uses default credentials. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Premisys Id
NVD
CVSS 3.0
9.8
EPSS
2.3%
CVE-2019-3908 HIGH This Week

Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Information Disclosure Premisys Id
NVD
CVSS 3.1
7.5
EPSS
1.8%
CVE-2019-3907 HIGH This Week

Premisys Identicard version 3.1.190 stores user credentials and other sensitive information with a known weak encryption method (MD5 hash of a salt and password). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Premisys Id
NVD
CVSS 3.1
7.5
EPSS
0.7%
CVE-2019-3906 HIGH This Week

Premisys Identicard version 3.1.190 contains hardcoded credentials in the WCF service on port 9003. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Premisys Id
NVD
CVSS 3.1
8.8
EPSS
2.9%
EPSS 2% CVSS 9.8
CRITICAL Act Now

Premisys Identicard version 3.1.190 database uses default credentials. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Premisys Id
NVD
EPSS 2% CVSS 7.5
HIGH This Week

Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Information Disclosure Premisys Id
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Premisys Identicard version 3.1.190 stores user credentials and other sensitive information with a known weak encryption method (MD5 hash of a salt and password). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Premisys Id
NVD
EPSS 3% CVSS 8.8
HIGH This Week

Premisys Identicard version 3.1.190 contains hardcoded credentials in the WCF service on port 9003. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Premisys Id
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy