PAX Technology A930 操作系统命令注入漏洞

The PAX Technology A930 is an Android mobile payment terminal from China's PAX Technology. An operating system command injection vulnerability exists in the PAX Technology A930 PayDroid7.1.1VirgoV04.3.26T120210419 version, which stems from the systoolserver's inability to check for dollar signs o...

PT-2022-17941 · Pax Technology · Paydroid +1

Name of the Vulnerable Software and Affected Versions: PAX A930 device with PayDroid version 7.1.1 Virgo V04.3.26T1 20210419 PAX Technology A930 PayDroid version 7.1.1 Virgo V04.4.02 20211201 Description: The issue allows an attacker to gain root access through command injection in the systool...