Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PAX A930 device with PayDroid_7.1.1_Virgo_V04.3.26T1_20210419 can allow an attacker to gain root access through command injection in systool client. The attacker must have shell access to the device in order to exploit this vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PAX Technology A930 操作系统命令注入漏洞
Vulnerability Description
PAX Technology A930是中国百富环球(PAX Technology)公司的一款 Android 移动支付终端。 PAX Technology A930 PayDroid_7.1.1_Virgo_V04.3.26T1_20210419版本存在操作系统命令注入漏洞,该漏洞源于systool_server无法检查用户提供的命令中的美元符号或反引号,导致以root身份执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A