CVE-2020-28044

Published: 2020-11-02T21:15Z

Last Modified: 2024-11-21T05:22Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An attacker with physical access to a PAX Point Of Sale device with ProlinOS through 2.4.161.8859R can boot it in management mode, enable the XCB service, and then list, read, create, and overwrite files with MAINAPP permissions. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt