Описание
Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. The password to the zip is hard-coded and unchangeable. An attacker with access to these backups can decrypt them and obtain sensitive data.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:identicard:premisys_id:3.1.190:*:*:*:*:*:*:*
EPSS
Процентиль: 70%
0.00639
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-259
CWE-798
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. The password to the zip is hard-coded and unchangeable. An attacker with access to these backups can decrypt them and obtain sensitive data.
EPSS
Процентиль: 70%
0.00639
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-259
CWE-798