Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Basware Banking (Maksuliikenne) 8.90.07.X relies on the client to enforce account locking, which allows local users to bypass that security mechanism by deleting the entry from the locking table. NOTE: this identifier was SPLIT from CVE-2015-0942 per ADT2 and ADT3 due to different vulnerability type and different affected versions. NOTE: this vulnerability exists because of an incorrect fix for CVE-2015-6744.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Basware Banking 权限许可和访问控制漏洞
Vulnerability Description
Basware Banking(Maksuliikenne)是芬兰Basware公司的一套与银行建立连接对自己的金融进行管理的软件。 Basware Banking 8.90.07及之前版本中存在安全漏洞,该漏洞源于程序依赖客户端执行账户锁定。本地攻击者可通过删除锁定列表中的条目利用该漏洞绕过安全机制。
CVSS Information
N/A
Vulnerability Type
N/A