CVE-2023-42134

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Published Jan 15, 2024

Updated: Jan 19, 2024

CWE ID 912

Summary

CVE-2023-42134 is a vulnerability affecting PAX Android-based Point of Sale (POS) devices running PayDroid_8.1.0_Sagittarius_V11.1.45_20230314 or earlier. An attacker with physical USB access to the device can exploit this issue to overwrite the signed partition and execute local code. This vulnerability poses a significant risk, enabling unauthorized access and potential data theft.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/snO97V
https://www.cve.org/CVERecord?id=CVE-2023-42134
https://nvd.nist.gov/vuln/detail/CVE-2023-42134

Back to Vulnerability Database

CVE-2023-42134

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations