CVE-2019-7672

2019-06-0518:49:42

mitre

www.cve.org

AI Score

8.6

Confidence

High

EPSS

0.005

Percentile

76.9%

JSON

Prima Systems FlexAir, Versions 2.3.38 and prior. The flash version of the web interface contains a hard-coded username and password, which may allow an authenticated attacker to escalate privileges.

References

applied-risk.com/index.php/download_file/view/199/165

applied-risk.com/labs/advisories

applied-risk.com/resources/ar-2019-007

www.us-cert.gov/ics/advisories/icsa-19-211-02