Vulnerabilities > Identicard > Premisys ID
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-01-18 | CVE-2019-3909 | Insecure Default Initialization of Resource vulnerability in Identicard Premisys ID 3.1.190 Premisys Identicard version 3.1.190 database uses default credentials. | 9.8 |
2019-01-18 | CVE-2019-3908 | Use of Hard-coded Credentials vulnerability in Identicard Premisys ID 3.1.190 Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. | 7.5 |
2019-01-18 | CVE-2019-3907 | Use of Password Hash With Insufficient Computational Effort vulnerability in Identicard Premisys ID 3.1.190 Premisys Identicard version 3.1.190 stores user credentials and other sensitive information with a known weak encryption method (MD5 hash of a salt and password). | 7.5 |
2019-01-18 | CVE-2019-3906 | Use of Hard-coded Credentials vulnerability in Identicard Premisys ID 3.1.190 Premisys Identicard version 3.1.190 contains hardcoded credentials in the WCF service on port 9003. | 8.8 |