Identicard Premisys Id — known CVE vulnerabilities
Every CVE whose affected-product data names Identicard Premisys Id, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2019-3909 — CVSS 9.8 (critical): Premisys Identicard version 3.1.190 database uses default credentials. Users are unable to change the credentials without vendor…
CVE-2019-3906 — CVSS 8.8 (high): Premisys Identicard version 3.1.190 contains hardcoded credentials in the WCF service on port 9003. An authenticated remote attacker can…
CVE-2019-3907 — CVSS 7.5 (high): Premisys Identicard version 3.1.190 stores user credentials and other sensitive information with a known weak encryption method (MD5 hash…
CVE-2019-3908 — CVSS 7.5 (high): Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. The password to the zip is hard-coded and unchangeable. An…