CVE-2019-3907

CVE-2019-3907

Vendor N/A
Product Premisys Identicard 3.1.190
Weakness CWE-798 · Hardcoded credentials
Published January 18, 2019
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

Premisys Identicard version 3.1.190 stores user credentials and other sensitive information with a known weak encryption method (MD5 hash of a salt and password).

Key dates

02Disclosure timeline

January 18, 2019 CVE published
August 4, 2024 Record updated