CVE-2019-14715

Verifone Pinpad Payment Terminals allow undocumented physical access to the system via an SBI bootloader memory write operation.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:verifone:p400_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:verifone:p400:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:verifone:p200_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:verifone:p200:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:verifone:vx_820_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:verifone:vx_820:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:verifone:vx_805_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:verifone:vx_805:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:27

Type Values Removed Values Added
References () https://www.ptsecurity.com/ww-en/analytics/threatscape/pt-2020-28/ - Third Party Advisory () https://www.ptsecurity.com/ww-en/analytics/threatscape/pt-2020-28/ - Third Party Advisory

Information

Published : 2020-10-23 05:15

Updated : 2024-11-21 04:27


NVD link : CVE-2019-14715

Mitre link : CVE-2019-14715

CVE.ORG link : CVE-2019-14715


JSON object : View

Products Affected

verifone

  • p400_firmware
  • vx_820_firmware
  • vx_805_firmware
  • p200_firmware
  • p400
  • p200
  • vx_820
  • vx_805
CWE
CWE-787

Out-of-bounds Write