Vulnerability — CVE-2019-7666

CVE-2019-7666

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2019-7666
Description:: Prima Systems FlexAir, Versions 2.3.38 and prior. The application allows improper authentication using the MD5 hash value of the password, which may allow an attacker with access to the database to login as admin without decrypting the password.
Last updated date:: 10/25/2022

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/25/2022
Reference url to background: http://packetstormsecurity.com/files/155262/Prima-FlexAir-Access-Control-2.3.35-Database-Backup-Predictable-Name.html