Hard-coded Username and Password Vulnerability in Prima Systems FlexAir

Hard-coded Username and Password Vulnerability in Prima Systems FlexAir

CVE-2019-7672 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Prima Systems FlexAir, Versions 2.3.38 and prior. The flash version of the web interface contains a hard-coded username and password, which may allow an authenticated attacker to escalate privileges.

Learn more about our Web App Pen Testing.