Описание
Premisys Identicard version 3.1.190 contains hardcoded credentials in the WCF service on port 9003. An authenticated remote attacker can use these credentials to access the badge system database and modify its contents.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:identicard:premisys_id:3.1.190:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01484
Низкий
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-798
CWE-798
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
Premisys Identicard version 3.1.190 contains hardcoded credentials in the WCF service on port 9003. An authenticated remote attacker can use these credentials to access the badge system database and modify its contents.
EPSS
Процентиль: 81%
0.01484
Низкий
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-798
CWE-798