Paxtechnology Paxstore — known CVE vulnerabilities
Every CVE whose affected-product data names Paxtechnology Paxstore, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-36128 — CVSS 8.2 (high): Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by a token spoofing vulnerability. Each payment terminal has a session…
CVE-2020-36126 — CVSS 8.1 (high): Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control that can lead to remote privilege…
CVE-2020-36125 — CVSS 7.1 (high): Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control where password revalidation in sensitive…
CVE-2020-36124 — CVSS 6.5 (medium): Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by XML External Entity (XXE) injection. An authenticated attacker can…
CVE-2020-36127 — CVSS 6.5 (medium): Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by an information disclosure vulnerability. Through the PUK signature…