HIGH
Treasuryxpress
CVE published 2017-01-23
CVE-2015-4626
CVE-2015-4626 describes a business-logic integrity flaw in B.A.S C2Box before 4.0.0 (r19171). According to NVD, the product relied on client-side validation, which could let a remote attacker supply a negative overdraft value and corrupt the application’s business logic. NVD scores the issue as HIGH with network access, no authentication, and high integrity impact.