Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/22 5:36 p.m.8 views

CVE-2020-36128

Pax Technology PAXSTORE v7.0.820200511171508 and lower is affected by a token spoofing vulnerability. Each payment terminal has a session token called X-Terminal-Token to access the marketplace. This allows the store to identify the terminal and make available the applications distributed by its...

8.2CVSS6.8AI score0.01158EPSS
Exploits1
osv
osv
added 2021/05/07 11:15 a.m.4 views

CVE-2020-36128

Pax Technology PAXSTORE v7.0.820200511171508 and lower is affected by a token spoofing vulnerability. Each payment terminal has a session token called X-Terminal-Token to access the marketplace. This allows the store to identify the terminal and make available the applications distributed by its...

8.2CVSS7.2AI score0.01158EPSS
Exploits1References3
attackerkb
attackerkb
added 2021/05/07 11:15 a.m.3 views

CVE-2020-36128

Pax Technology PAXSTORE v7.0.820200511171508 and lower is affected by a token spoofing vulnerability. Each payment terminal has a session token called X-Terminal-Token to access the marketplace. This allows the store to identify the terminal and make available the applications distributed by its...

8.2CVSS5.4AI score0.01158EPSS
Exploits1References4
cve
cve
added 2021/05/07 10:34 a.m.46 views

CVE-2020-36128

CVE-2020-36128 affects Pax Technology PAXSTORE v7.0.8_20200511171508 and earlier. The vulnerability stems from token impersonation: each terminal uses an X-Terminal-Token to access the marketplace, and an attacker can intercept HTTPS requests to obtain the token assignment and craft a token to im...

8.2CVSS8AI score0.01158EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder