High severity8.8NVD Advisory· Published Jul 1, 2019· Updated Jun 17, 2026
CVE-2019-7666
CVE-2019-7666
Description
Prima Systems FlexAir, Versions 2.3.38 and prior. The application allows improper authentication using the MD5 hash value of the password, which may allow an attacker with access to the database to login as admin without decrypting the password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Prima Systems/FlexAirdescription
- Range: <=2.3.38
- Range: <=2.3.38
Patches
Vulnerability mechanics
References
4- packetstormsecurity.com/files/155262/Prima-FlexAir-Access-Control-2.3.35-Database-Backup-Predictable-Name.htmlnvdExploitThird Party AdvisoryVDB Entry
- applied-risk.com/labs/advisoriesnvdThird Party Advisory
- www.applied-risk.com/resources/ar-2019-007nvdThird Party Advisory
- www.us-cert.gov/ics/advisories/icsa-19-211-02nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.