Security Advisory

CVE-2023-42136

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-15 13:28:57

Last updated 2024-10-10 15:35:55

Assigner CERT-PL

State PUBLISHED

Description

PAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.50_20230614 or earlier can allow the execution of arbitrary commands with system account privilege by shell injection starting with a specific word. The attacker must have shell access to the device in order to exploit this vulnerability.

← Browse all CVEs View on cve.org ↗