IDenticard PremiSys (Update A)

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to view sensitive information via backups, obtain access to credentials, and/or obtain full access to the system with admin privileges.

CVEs (3)

Remediations

• IDenticard recommends users upgrade to Version 4.2 to address all three vulnerabilities. This software update is provided free of charge. To obtain the new software update and additional information visit https://identicard.helpdocs.io/article/8ikfxeqgdx-identicard-premi-sys-v-4-2 or contact the IDenticard Technical Support Team at (800) 220-8096.
• IDenticard also recommends users change the Service Database default username and password.
• In addition to upgrading to Version 4.2, CVE-2019-3908 requires users to set a new password for the backup/restore feature. For more information see the following link:

Affected Vendors

Affected Products (1)

Affected Sectors

Commercial Facilities, Government Facilities, Healthcare and Public Health, Water and Wastewater Systems