VYPR
Vendor

PAX Technology

Products
4
CVEs
12
Across products
12
Status
Private

Products

4

Recent CVEs

12
  • CVE-2023-42137Jan 15, 2024
    risk 0.00cvss epss 0.00

    PAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.50_20230614 or earlier can allow for command execution with high privileges by using malicious symlinks. The attacker must have shell access to the device in order to exploit this vulnerability.

  • CVE-2023-42136Jan 15, 2024
    risk 0.00cvss epss 0.00

    PAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.50_20230614 or earlier can allow the execution of arbitrary commands with system account privilege by shell injection starting with a specific word. The attacker must have shell access to the device in order…

  • CVE-2023-42135Jan 15, 2024
    risk 0.00cvss epss 0.01

    PAX A920Pro/A50 devices with PayDroid_8.1.0_Sagittarius_V11.1.50_20230614 or earlier can allow local code execution via parameter injection by bypassing the input validation when flashing a specific partition. The attacker must have physical USB access to the device in…

  • CVE-2023-42134Jan 15, 2024
    risk 0.00cvss epss 0.01

    PAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.45_20230314 or earlier can allow the signed partition overwrite and subsequently local code execution via hidden command. The attacker must have physical USB access to the device in order to exploit this…

  • CVE-2023-4818Jan 15, 2024
    risk 0.00cvss epss 0.01

    PAX A920 device allows to downgrade bootloader due to a bug in its version check. The signature is correctly checked and only bootloader signed by PAX can be used.  The attacker must have physical USB access to the device in order to exploit this vulnerability.

  • CVE-2023-26980Apr 14, 2023
    risk 0.00cvss epss 0.00

    PAX Technology PAX A920 Pro PayDroid 8.1suffers from a Race Condition vulnerability, which allows attackers to bypass the payment software and force the OS to boot directly to Android during the boot process. NOTE: the vendor disputes this because the attack is not feasible: the…

  • CVE-2020-36124May 7, 2021
    risk 0.00cvss epss 0.01

    Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by XML External Entity (XXE) injection. An authenticated attacker can compromise the private keys of a JWT token and reuse them to manipulate the access tokens to access the platform as any desired user (clients…

  • CVE-2020-36125May 7, 2021
    risk 0.00cvss epss 0.01

    Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control where password revalidation in sensitive operations can be bypassed remotely by an authenticated attacker through requesting the endpoint directly.

  • CVE-2020-36126May 7, 2021
    risk 0.00cvss epss 0.01

    Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control that can lead to remote privilege escalation. PAXSTORE marketplace endpoints allow an authenticated user to read and write data not owned by them, including third-party users,…

  • CVE-2020-36127May 7, 2021
    risk 0.00cvss epss 0.01

    Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by an information disclosure vulnerability. Through the PUK signature functionality, an administrator will not have access to the current p12 certificate and password. When accessing this functionality, the…

  • CVE-2020-36128May 7, 2021
    risk 0.00cvss epss 0.01

    Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by a token spoofing vulnerability. Each payment terminal has a session token (called X-Terminal-Token) to access the marketplace. This allows the store to identify the terminal and make available the…

  • CVE-2020-28044Nov 1, 2020
    risk 0.00cvss epss 0.00

    An attacker with physical access to a PAX Point Of Sale device with ProlinOS through 2.4.161.8859R can boot it in management mode, enable the XCB service, and then list, read, create, and overwrite files with MAINAPP permissions.