Unrated severityNVD Advisory· Published Jan 15, 2024· Updated Jun 17, 2025
CVE-2023-42137
CVE-2023-42137
Description
PAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.50_20230614 or earlier can allow for command execution with high privileges by using malicious symlinks.
The attacker must have shell access to the device in order to exploit this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 0
Patches
Vulnerability mechanics
References
4- cert.pl/en/posts/2024/01/CVE-2023-4818/mitrethird-party-advisory
- cert.pl/posts/2024/01/CVE-2023-4818/mitrethird-party-advisory
- ppn.paxengine.com/release/developmentmitrevendor-advisory
- blog.stmcyber.com/pax-pos-cves-2023/mitretechnical-description
News mentions
0No linked articles in our index yet.