Vulnerabilities > Verifone > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-23 | CVE-2019-14718 | Incorrect Default Permissions vulnerability in Verifone Mx900 Firmware 30251000 Verifone MX900 series Pinpad Payment Terminals with OS 30251000 have Insecure Permissions, with resultant svc_netcontrol arbitrary command injection and privilege escalation. | 6.7 |
| 2020-10-23 | CVE-2019-14716 | Unspecified vulnerability in Verifone Verix OS Qt000530 Verifone VerixV Pinpad Payment Terminals with QT000530 have an undocumented physical access mode (aka VerixV shell.out). low complexity verifone | 6.6 |
| 2020-10-23 | CVE-2019-14715 | Out-of-bounds Write vulnerability in Verifone products Verifone Pinpad Payment Terminals allow undocumented physical access to the system via an SBI bootloader memory write operation. | 6.8 |
| 2020-10-23 | CVE-2019-14713 | Unspecified vulnerability in Verifone Mx900 Firmware 30251000 Verifone MX900 series Pinpad Payment Terminals with OS 30251000 allow installation of unsigned packages. | 5.5 |