← back
CVE-2023-27199

CVE-2023-27199

EPSS 0.2%CWE-290
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
05 Jul 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
PAX Technology A930 PayDroid_7.1.1_Virgo_V04.5.02_20220722 allows attackers to compile a malicious shared library and use LD_PRELOAD to bypass authorization checks.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/wr3nchsr/PAX-Paydroid-Advisories/blob/master/advisories/2023/CVEs/CVE-2023-27199.mdhttps://wr3nchsr.github.io/pax-paydroid-vulnerabilities-advisory-2023/