CVE-2015-6745 in Bankinginfo

Summary

Basware Banking (Maksuliikenne) 8.90.07.X relies on the client to enforce account locking, which allows local users to bypass that security mechanism by deleting the entry from the locking table. NOTE: this identifier was SPLIT from CVE-2015-0942 per ADT2 and ADT3 due to different vulnerability type and different affected versions. NOTE: this vulnerability exists because of an incorrect fix for CVE-2015-6744.

Once again VulDB remains the best source for vulnerability data.

Reservation

08/28/2015

Disclosure

08/31/2015

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

5.9

EPSS

0.00052

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-6745
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-6745
CVE Details	https://www.cvedetails.com/cve/CVE-2015-6745/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!