Weak Encryption Method Used in Premisys Identicard Version 3.1.190 Puts User Credentials at Risk

Weak Encryption Method Used in Premisys Identicard Version 3.1.190 Puts User Credentials at Risk

CVE-2019-3907 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Premisys Identicard version 3.1.190 stores user credentials and other sensitive information with a known weak encryption method (MD5 hash of a salt and password).

Learn more about our User Device Pen Test.