Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control where password revalidation in sensitive operations can be bypassed remotely by an authenticated attacker through requesting the endpoint directly.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PAX Technology PAXSTORE 授权问题漏洞
Vulnerability Description
PAX Technology PAXSTORE是中国百富(PAX)公司的一个应用软件。一个生态系统,可连接全球80多个国家/地区的250万个终端,数千个应用程序开发人员和180多个市场。 Pax Technology PAXSTORE v7.0.8_20200511171508版本及之前版本存在授权问题漏洞,通过身份验证的攻击者可利用该漏洞可以通过直接请求端点来远程绕过敏感操作中的密码重新验证。
CVSS Information
N/A
Vulnerability Type
N/A