Lucene search
K

64 matches found

CVE
CVE
added 2023/07/05 12:0 a.m.79 views

CVE-2023-27197

CVE-2023-27197 affects PAX A930 with PayDroid 7.1.1 Virgo V04.5.02 20220722. The flaw lets an attacker with shell access gain root by running a crafted binary that uses an exported function from a shared library. Affected component/root cause: exploited via a shared-library export; impact is root...

6.7CVSS6.6AI score0.00228EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/05 12:0 a.m.30 views

CVE-2023-27198

PAX A930 device with PayDroid7.1.1VirgoV04.5.0220220722 can allow the execution of arbitrary commands by using the exec service and including a specific word in the command to be executed. The attacker must have physical USB access to the device in order to exploit this vulnerability...

7AI score0.00592EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/07/05 12:0 a.m.28 views

CVE-2023-27197

PAX A930 device with PayDroid7.1.1VirgoV04.5.0220220722 can allow an attacker to gain root access by running a crafted binary leveraging an exported function from a shared library. The attacker must have shell access to the device in order to exploit this vulnerability...

6.8AI score0.00228EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.4 views

PAX Technology A930 操作系统命令注入漏洞

PAX Technology A930 is an Android mobile payment terminal from PAX Technology China. A security vulnerability exists in the PAX Technology A930 PayDroid7.1.1VirgoV04.5.0220220722 version, which originates from allowing arbitrary commands to be executed by using the exec service and including...

6.8CVSS6.8AI score0.00592EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/05 12:0 a.m.16 views

CVE-2023-27198

PAX A930 device with PayDroid7.1.1VirgoV04.5.0220220722 can allow the execution of arbitrary commands by using the exec service and including a specific word in the command to be executed. The attacker must have physical USB access to the device in order to exploit this vulnerability...

7.2AI score0.00592EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/05 12:0 a.m.4 views

PT-2023-20999 · Pax · Pax A930 +1

Name of the Vulnerable Software and Affected Versions: PAX A930 device with PayDroid version 7.1.1 Virgo V04.5.02 20220722 Description: The issue allows the execution of arbitrary commands by using the exec service and including a specific word in the command to be executed. The attacker must hav...

6.8CVSS7.5AI score0.00592EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.6 views

PAX Technology A930 安全漏洞

PAX Technology A930 is an Android mobile payment terminal from PAX Global PAX Technology, China. A security vulnerability exists in the PAX A930 PayDroid7.1.1VirgoV04.5.0220220722 version, which originates from a vulnerability that allows an attacker to compile malicious shared libraries and bypa...

6.7CVSS6.6AI score0.00225EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/05 12:0 a.m.11 views

CVE-2023-27197

PAX A930 device with PayDroid7.1.1VirgoV04.5.0220220722 can allow an attacker to gain root access by running a crafted binary leveraging an exported function from a shared library. The attacker must have shell access to the device in order to exploit this vulnerability...

7AI score0.00228EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/05 12:0 a.m.7 views

PT-2023-20998 · Pax · Pax A930 +1

Name of the Vulnerable Software and Affected Versions: PAX A930 device with PayDroid version 7.1.1 Virgo V04.5.02 20220722 Description: The issue allows an attacker to gain root access by running a crafted binary leveraging an exported function from a shared library. The attacker must have shell...

6.7CVSS7.1AI score0.00228EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/12/16 10:15 p.m.2 views

CVE-2022-26579

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow a root privileged attacker to install unsigned packages. The attacker must have shell access to the device and gain root privileges in order to exploit this vulnerability...

6CVSS5.9AI score0.00158EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/12/16 10:15 p.m.3 views

CVE-2022-26580

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow the execution of specific command injections on selected binaries in the ADB daemon shell service. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS6.1AI score0.01745EPSS
Exploits0References4
OSV
OSV
added 2022/12/16 10:15 p.m.4 views

CVE-2022-26581

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow an unauthorized attacker to perform privileged actions through the execution of specific binaries listed in ADB daemon. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS5.9AI score0.00329EPSS
Exploits0References3
NVD
NVD
added 2022/12/16 10:15 p.m.24 views

CVE-2022-26581

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow an unauthorized attacker to perform privileged actions through the execution of specific binaries listed in ADB daemon. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS0.00329EPSS
Exploits0References3
OSV
OSV
added 2022/12/16 10:15 p.m.6 views

CVE-2022-26579

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow a root privileged attacker to install unsigned packages. The attacker must have shell access to the device and gain root privileges in order to exploit this vulnerability...

6CVSS5.8AI score0.00158EPSS
Exploits0References3
OSV
OSV
added 2022/12/16 10:15 p.m.6 views

CVE-2022-26580

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow the execution of specific command injections on selected binaries in the ADB daemon shell service. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS5.9AI score0.01745EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/12/16 10:15 p.m.5 views

CVE-2022-26581

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow an unauthorized attacker to perform privileged actions through the execution of specific binaries listed in ADB daemon. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS6.1AI score0.00329EPSS
Exploits0References4
OSV
OSV
added 2022/12/16 10:15 p.m.5 views

CVE-2022-26582

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow an attacker to gain root access through command injection in systool client. The attacker must have shell access to the device in order to exploit this vulnerability...

7.8CVSS5.8AI score0.00872EPSS
Exploits0References3
NVD
NVD
added 2022/12/16 10:15 p.m.25 views

CVE-2022-26582

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow an attacker to gain root access through command injection in systool client. The attacker must have shell access to the device in order to exploit this vulnerability...

7.8CVSS0.00872EPSS
Exploits0References3
NVD
NVD
added 2022/12/16 10:15 p.m.30 views

CVE-2022-26580

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow the execution of specific command injections on selected binaries in the ADB daemon shell service. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS0.01745EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/12/16 10:15 p.m.3 views

CVE-2022-26582

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow an attacker to gain root access through command injection in systool client. The attacker must have shell access to the device in order to exploit this vulnerability...

7.8CVSS5.9AI score0.00872EPSS
Exploits0References4
Rows per page
Query Builder