PT-2019-16764 · Premisys · Premisys Identicard

Jimi Sebree

Published

2019-01-18

Updated

2020-08-24

CVE-2019-3909

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Premisys Identicard version 3.1.190

Description The Premisys Identicard database uses default credentials. A significant issue is that users are unable to change these credentials without intervention from the vendor.

Recommendations For Premisys Identicard version 3.1.190, contact the vendor to change the default database credentials, as users cannot modify them independently.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1188

Related Identifiers

CVE-2019-3909

Affected Products

Premisys Identicard

PT-2019-16764 · Premisys · Premisys Identicard

CVE-2019-3909

Weakness Enumeration

Related Identifiers

Affected Products

References · 4