Vulnerability Management, Threat Intelligence

Cyberattacks likely with PAX payment terminal bugs

Share

SecurityWeek reports that six vulnerabilities impacting PAX Technology's Android-based point-of-sale terminals that have already been addressed by the China-based payment terminal manufacturer could be leveraged to facilitate further compromise. Threat actors could exploit half of the flaws including CVE-2023-4818, which enables bootloader downgrading, and the kernel argument injection bugs, tracked as CVE-2023-42134, and CVE-2023-42135 to enable physical USB access to targeted devices, according to a report from STM Cyber, which discovered the vulnerabilities. On the other hand, two other bugs could be abused to enable arbitrary command execution among attackers with shell access to devices. Attackers could use the first flaw, tracked as CVE-2023-42136, for shell command injections that would evade security checks and allow system privileges, while the second vulnerability, tracked as CVE-2023-42137, could be leveraged for arbitrary file overwriting and privilege escalation purposes. No additional details regarding the sixth vulnerability were provided by researchers, who reported the bugs in May.

Related

Newly patched Windows zero-day leveraged to attack Ukraine

Such intrusions, which Ukraine's Computer Emergency Response Team associated with the Russian threat operation UAC-0194, commenced with the delivery of phishing emails with a URL file, which when interacted exploits the vulnerability to facilitate installation of additional payloads, including the open-source trojan SparkRAT, an analysis from ClearSky researchers showed.

Related Events

Related Terms

BackdoorBlack HatBrute ForceBusiness Email Compromise (BEC)DNS SpoofingData MiningDeepfakeDisruptionDistributed ScansFault Line Attacks

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.