CVE-2019-3907

Premisys Identicard version 3.1.190 stores user credentials and other sensitive information with a known weak encryption method (MD5 hash of a salt and password).

Published : 2019-01-18 18:29 Updated : 2019-10-09 23:49

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Identicard Premisys Id 3.1.190 cpe:/a:identicard:premisys_id:3.1.190
  1. Identicard (1) Search CVE
    1. Premisys Id (1) Search CVE
      1. 3.1.190

CWE

ID Name Description Links
CWE-326 Inadequate Encryption Strength The software stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required. CVE

History of changes

Date Event
2019-01-24 20:56
2019-01-19 11:29
2019-01-18 18:29

New CVE