Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2024/01/15 2:15 p.m.0 views

CVE-2023-42134

PAX Android based POS devices with PayDroid8.1.0SagittariusV11.1.4520230314 or earlier can allow the signed partition overwrite and subsequently local code execution via hidden command. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS6.2AI score0.0032EPSS
Exploits1References4
OSV
OSVadded 2024/01/15 2:15 p.m.1 views

CVE-2023-42136

PAX Android based POS devices with PayDroid8.1.0SagittariusV11.1.5020230614 or earlier can allow the execution of arbitrary commands with system account privilege by shell injection starting with a specific word. The attacker must have shell access to the device in order to exploit this...

7.8CVSS6.1AI score0.0032EPSS
Exploits2References4
CNNVD
CNNVDadded 2024/01/15 12:0 a.m.2 views

PAX Technology A920 Security Vulnerability

PAX Technology A920 is an Android mobile payment terminal from PAX Technology. A security vulnerability exists in PAX Technology A920 PayDroid8.1.0SagittariusV11.1.4520230314 and prior versions, which originates from the ability to bypass input validation when refreshing a specific partition, and...

7.6CVSS7.2AI score0.0032EPSS
Exploits2References5
CNNVD
CNNVDadded 2024/01/15 12:0 a.m.2 views

PAX Technology Android based POS Backlink Vulnerability

PAX Technology Android based POS is a series of Android mobile payment terminals from China-based PAX Global PAX Technology. PAX Technology Android based POS PayDroid8.1.0SagittariusV11.1.5020230614 and prior versions suffer from a backlink vulnerability that originates from allowing commands to ...

7.8CVSS6.9AI score0.00394EPSS
Exploits2References5
OSV
OSVadded 2023/07/05 8:15 p.m.2 views

CVE-2023-27197

PAX A930 device with PayDroid7.1.1VirgoV04.5.0220220722 can allow an attacker to gain root access by running a crafted binary leveraging an exported function from a shared library. The attacker must have shell access to the device in order to exploit this vulnerability...

6.7CVSS5.8AI score0.00033EPSS
Exploits0References2
CNNVD
CNNVDadded 2023/07/05 12:0 a.m.1 views

PAX Technology A930 操作系统命令注入漏洞

PAX Technology A930 is an Android mobile payment terminal from PAX Technology China. A security vulnerability exists in the PAX Technology A930 PayDroid7.1.1VirgoV04.5.0220220722 version, which originates from allowing arbitrary commands to be executed by using the exec service and including...

6.8CVSS6.8AI score0.00097EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2022/12/16 10:15 p.m.2 views

CVE-2022-26580

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow the execution of specific command injections on selected binaries in the ADB daemon shell service. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS6.1AI score0.01497EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2022/12/16 12:0 a.m.2 views

PT-2022-17941 · Pax Technology · Paydroid +1

Name of the Vulnerable Software and Affected Versions: PAX A930 device with PayDroid version 7.1.1 Virgo V04.3.26T1 20210419 PAX Technology A930 PayDroid version 7.1.1 Virgo V04.4.02 20211201 Description: The issue allows an attacker to gain root access through command injection in the systool...

7.8CVSS8.4AI score0.00729EPSS
Exploits0References7
Rows per page
Query Builder