Unrated severityNVD Advisory· Published Jan 15, 2024· Updated Jun 17, 2025
CVE-2023-4818
CVE-2023-4818
Description
PAX A920 device allows to downgrade bootloader due to a bug in its version check. The signature is correctly checked and only bootloader signed by PAX can be used.
The attacker must have physical USB access to the device in order to exploit this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 0
Patches
Vulnerability mechanics
References
4- cert.pl/en/posts/2024/01/CVE-2023-4818/mitrethird-party-advisory
- cert.pl/posts/2024/01/CVE-2023-4818/mitrethird-party-advisory
- ppn.paxengine.com/release/developmentmitrevendor-advisory
- blog.stmcyber.com/pax-pos-cves-2023/mitretechnical-description
News mentions
0No linked articles in our index yet.