Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-26980

EPSS 0.07% · P22
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-26980

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
PAX Technology PAX A920 Pro PayDroid 8.1suffers from a Race Condition vulnerability, which allows attackers to bypass the payment software and force the OS to boot directly to Android during the boot process. NOTE: the vendor disputes this because the attack is not feasible: the home launcher will be loaded before any user applications.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
PAX Technology PAX A920 Pro PayDroid 竞争条件问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PAX Technology PAX A920 Pro PayDroid是中国百富环球(PAX Technology)公司的一款安卓支付终端,配有大高清屏幕、高质量摄像头和扫描仪以及高速打印机。 PAX Technology PAX A920 Pro PayDroid 8.1版本存在竞争条件问题漏洞,该漏洞源于存在竞争条件漏洞。攻击者可利用该漏洞绕过支付软件,并在启动过程中强制操作系统直接启动至Android。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2023-26980

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2023-26980

登录查看更多情报信息。

Same Patch Batch · n/a · 2023-04-14 · 71 CVEs total

CVE-2023-290916.8 MEDIUMSAMSUNG Exynos 缓冲区错误漏洞
CVE-2023-290906.8 MEDIUMSAMSUNG Exynos 缓冲区错误漏洞
CVE-2023-290896.8 MEDIUMSAMSUNG Exynos 缓冲区错误漏洞
CVE-2023-290886.8 MEDIUMSAMSUNG Exynos 缓冲区错误漏洞
CVE-2023-290876.8 MEDIUMSAMSUNG Exynos 缓冲区错误漏洞
CVE-2023-290866.8 MEDIUMSAMSUNG Exynos 缓冲区错误漏洞
CVE-2023-290856.8 MEDIUMSAMSUNG Exynos 缓冲区错误漏洞
CVE-2023-20416.3 MEDIUMnovel-plus sql injection
CVE-2023-20396.3 MEDIUMnovel-plus sql injection
CVE-2023-20406.3 MEDIUMnovel-plus sql injection
CVE-2023-20566.3 MEDIUMDedeCMS module_main.php GetSystemFile code injection
CVE-2023-20426.3 MEDIUMDataGear JDBC Server deserialization
CVE-2023-261236.1 MEDIUMraylib 跨站脚本漏洞
CVE-2023-20594.3 MEDIUMDedeCMS select_templets.php path traversal
CVE-2023-20582.4 LOWEyouCms HTTP POST Request cross site scripting
CVE-2023-20572.4 LOWEyouCms New Picture cross site scripting
CVE-2023-27915Autodesk AutoCAD 缓冲区错误漏洞
CVE-2023-29622Sourcecodester Purchase Order Management System SQL注入漏洞
CVE-2023-29067Autodesk AutoCAD 缓冲区错误漏洞
CVE-2023-29569Cesanta MJS 安全漏洞

Showing top 20 of 71 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2023-26980

No comments yet

Leave a comment