Every CVE whose affected-product data names Basware Banking, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2015-6742 — CVSS 6.5 (medium): Basware Banking (Maksuliikenne) before 8.90.07.X uses a hardcoded password for the ANCO account, which allows remote authenticated users to…
CVE-2015-6743 — CVSS 6.5 (medium): Basware Banking (Maksuliikenne) 8.90.07.X uses a hardcoded password for an unspecified account, which allows remote authenticated users to…
CVE-2015-0943 — CVSS 5.8 (medium): Basware Banking (Maksuliikenne) before 9.10.0.0 does not encrypt communication between the client and the backend server, which allows…
CVE-2015-6747 — CVSS 5.0 (medium): Basware Banking (Maksuliikenne) 8.90.07.X does not properly prevent access to private keys, which allows remote attackers to spoof…
CVE-2015-6745 — CVSS 4.6 (medium): Basware Banking (Maksuliikenne) 8.90.07.X relies on the client to enforce account locking, which allows local users to bypass that security…
CVE-2015-6744 — CVSS 4.3 (medium): Basware Banking (Maksuliikenne) before 8.90.07.X relies on the client to enforce (1) login verification, (2) audit trail creation, and (3)…
CVE-2015-6746 — CVSS 2.1 (low): Basware Banking (Maksuliikenne) before 8.90.07.X stores private keys in plaintext in the SQL database, which allows remote attackers to…