CVE-2015-6746 in Bankinginfo

Summary

Basware Banking (Maksuliikenne) before 8.90.07.X stores private keys in plaintext in the SQL database, which allows remote attackers to spoof communications with banks via unspecified vectors. NOTE: this identifier was SPLIT from CVE-2015-0942 per ADT2 due to different vulnerability types.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

08/28/2015

Disclosure

08/31/2015

Moderation

VulDB entry created

Entries

VDB-77509 (1)

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

5.1

EPSS

0.00120

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-6746
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-6746
CVE Details	https://www.cvedetails.com/cve/CVE-2015-6746/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!