NVD

Id
27584  
Name
CVE-2015-6744  
Description
Basware Banking (Maksuliikenne) before 8.90.07.X relies on the client to enforce (1) login verification, (2) audit trail creation, and (3) account locking, which allows remote attackers to "disrupt security-critical functions" by "dropping network traffic." NOTE: this identifier was SPLIT from CVE-2015-0942 per ADT2 and ADT3 due to different vulnerability type and different affected versions.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-19  
Published
2015-08-31  
Modified Date
2015-08-31  
Seq
2015-6744  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
144626 27584 CVE-2015-6744 20150727 Multiple unresolved vulnerabilities in Basware Banking/Maksuliikenne  View
144627 27584 CVE-2015-6744 https://www.viestintavirasto.fi/en/cybersecurity/vulnerabilities/2015/haavoittuvuus-2015-018.html  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
9205 JVNDB-2015-004525 Basware Banking における重要なセキュリティ機能に障害を及ぼされる脆弱性 Basware Banking (Maksuliikenne) は、(1) ログインの証明書、(2) 監査証跡の作成、および (3) アカウントのロックを実行する際にクライアントに依存するため、重要なセキュリティ機能に障害を及ぼされる脆弱性が存在します。 CVE-2015-6744 83969 CVE-2015-6744 27584 4.3 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-004525.html 2015-08-07 2015-09-01 View