Hardcoded Credentials in PAVO Inc.’s PAVO Pay

July 21, 2025 invoker category_cve

CVE Details

Basic Information

Title Hardcoded Credentials in PAVO Inc.’s PAVO Pay
Type cve
Published 2025-07-21T14:01:06.978Z
Modified 2025-07-21T14:46:39.226Z

Product Information

Vendor PAVO Inc.
Product PAVO Pay
Version 0

CVSS Information

Base Score 7.5 (HIGH)
Attack Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Analysis

AI Description A hardcoded credentials vulnerability in PAVO Pay allows unauthorized access to sensitive data within the executable. This could lead to potential data breaches if exploited.
AI Severity High
AI Vendor PAVO Inc.
AI Product PAVO Pay
AI Version before 13.05.2025

Affected Products

  • PAVO Inc. PAVO Pay 0

Additional Information

CWE List CWE-798
Source TR-CERT

Description

Use of Hard-coded Credentials vulnerability in PAVO Inc. PAVO Pay allows Read Sensitive Constants Within an Executable. This issue affects PAVO Pay: before 13.05.2025.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.