CVE-2019-3908

Published: Jan 18, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. The password to the zip is hard-coded and unchangeable. An attacker with access to these backups can decrypt them and obtain sensitive data.

Vendor	Product	Versions
n/a	Premisys Identicard 3.1.190	affected `Premisys Identicard 3.1.190`

Weaknesses (CWE)

CWE-259

References

https://www.tenable.com/security/research/tra-2019-01

x_refsource_MISC

106552

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-3908

Description

Affected Products

Weaknesses (CWE)

References