CVE-2023-27197

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jul 5, 2023

Updated: Apr 23, 2024

Summary

CVE-2023-27197 is a vulnerability affecting the PAX A930 device with PayDroid_7.1.1_Virgo_V04.5.02_20220722 software. An attacker can exploit this issue by running a specially crafted binary, which leverages an exported function from a shared library. To successfully exploit this vulnerability, the attacker must first gain shell access to the device. This vulnerability grants the attacker root access, posing a significant risk to the affected system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Pax Technology Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r13Jjl
https://www.cve.org/CVERecord?id=CVE-2023-27197
https://nvd.nist.gov/vuln/detail/CVE-2023-27197

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2023-27197

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations