GCVE - cpe:2.3:h:paxtechnology:pax_a930:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:paxtechnology:pax_a930:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Paxtechnology (`595ae241-81fc-56b3-931a-4bd76e3a7d24`)
Product	Pax A930 (`af78f519-cbfb-5622-a744-38a24a3d21ed`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-27199`	not_vulnerable	2026-06-08 05:57:40.711664	Details available PAX Technology A930 PayDroid_7.1.1_Virgo_V04.5.02_20220722 allows attackers to compile a malicious shared library and use LD_PRELOAD to bypass authorization checks. Published: 2023-07-05T00:00:00.000Z Updated: 2024-12-04T15:53:37.997Z Open on db.gcve.eu Reference links https://github.com/wr3nchsr/PAX-Paydroid-Advisories/blob/master/advisories/2023/CVEs/CVE-2023-27199.md https://wr3nchsr.github.io/pax-paydroid-vulnerabilities-advisory-2023/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-27199`	vulnerable	2026-06-08 05:57:40.711247	Details available PAX Technology A930 PayDroid_7.1.1_Virgo_V04.5.02_20220722 allows attackers to compile a malicious shared library and use LD_PRELOAD to bypass authorization checks. Published: 2023-07-05T00:00:00.000Z Updated: 2024-12-04T15:53:37.997Z Open on db.gcve.eu Reference links https://github.com/wr3nchsr/PAX-Paydroid-Advisories/blob/master/advisories/2023/CVEs/CVE-2023-27199.md https://wr3nchsr.github.io/pax-paydroid-vulnerabilities-advisory-2023/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-27198`	not_vulnerable	2026-06-08 05:57:40.710942	Details available PAX A930 device with PayDroid_7.1.1_Virgo_V04.5.02_20220722 can allow the execution of arbitrary commands by using the exec service and including a specific word in the command to be executed. The attacker must have physical USB access to the device in order to exploit this vulnerability. Published: 2023-07-05T00:00:00.000Z Updated: 2024-08-02T12:01:32.438Z Open on db.gcve.eu Reference links https://github.com/wr3nchsr/PAX-Paydroid-Advisories/blob/master/advisories/2023/CVEs/CVE-2023-27198.md https://wr3nchsr.github.io/pax-paydroid-vulnerabilities-advisory-2023/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-27198`	vulnerable	2026-06-08 05:57:40.710853	Details available PAX A930 device with PayDroid_7.1.1_Virgo_V04.5.02_20220722 can allow the execution of arbitrary commands by using the exec service and including a specific word in the command to be executed. The attacker must have physical USB access to the device in order to exploit this vulnerability. Published: 2023-07-05T00:00:00.000Z Updated: 2024-08-02T12:01:32.438Z Open on db.gcve.eu Reference links https://github.com/wr3nchsr/PAX-Paydroid-Advisories/blob/master/advisories/2023/CVEs/CVE-2023-27198.md https://wr3nchsr.github.io/pax-paydroid-vulnerabilities-advisory-2023/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-27197`	not_vulnerable	2026-06-08 05:57:40.710438	Details available PAX A930 device with PayDroid_7.1.1_Virgo_V04.5.02_20220722 can allow an attacker to gain root access by running a crafted binary leveraging an exported function from a shared library. The attacker must have shell access to the device in order to exploit this vulnerability. Published: 2023-07-05T00:00:00.000Z Updated: 2024-12-05T17:00:22.985Z Open on db.gcve.eu Reference links https://github.com/wr3nchsr/PAX-Paydroid-Advisories/blob/master/advisories/2023/CVEs/CVE-2023-27197.md https://wr3nchsr.github.io/pax-paydroid-vulnerabilities-advisory-2023/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.