Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control that can lead to remote privilege escalation. PAXSTORE marketplace endpoints allow an authenticated user to read and write data not owned by them, including third-party users, application and payment terminals, where an attacker can impersonate any user which may lead to the unauthorized disclosure, modification, or destruction of information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Pax Technology PAXSTORE 安全漏洞
Vulnerability Description
PAX Technology PAXSTORE是中国百富(PAX)公司的一个应用软件。一个生态系统,可连接全球80多个国家/地区的250万个终端,数千个应用程序开发人员和180多个市场。 Pax Technology PAXSTORE v7.0.8_20200511171508版本及之前版本存在安全漏洞,该漏洞允许经过认证的用户读写不属于他们的数据,包括第三方用户、应用程序和支付终端,其中攻击者可利用该漏洞可以假冒任何用户,可能导致未经授权的披露、修改或破坏信息。
CVSS Information
N/A
Vulnerability Type
N/A