Ncr Terminal_handler
9 CVEs affecting Ncr Terminal_handler. Latest disclosed: 2025-06-23. Critical: 6, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-47030 | Critical | 9.8 | 2025-06-23 | An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a GET request to a UserService… |
CVE-2023-47029 | Critical | 9.8 | 2025-06-23 | An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted POST request to the… |
CVE-2023-47031 | Critical | 9.8 | 2025-06-23 | An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to escalate privileges via a crafted POST request to the grantRolesToUsers, grantRolesToGroup… |
CVE-2023-47295 | Critical | 9.8 | 2025-06-23 | A CSV injection vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands via injecting a crafted payload into any text field… |
CVE-2023-47032 | Critical | 9.8 | 2025-06-23 | Password Vulnerability in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the UserService SOAP API func… |
CVE-2023-47297 | Critical | 9.8 | 2025-06-23 | A settings manipulation vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands, including editing system security auditing… |
CVE-2023-47294 | High | 8.1 | 2025-06-23 | An issue in NCR Terminal Handler v1.5.1 allows low-level privileged authenticated attackers to arbitrarily deactivate, lock, and delete user accounts via a cra… |
CVE-2023-47022 | Medium | 6.5 | 2024-02-06 | Insecure Direct Object Reference in NCR Terminal Handler v.1.5.1 allows an unprivileged user to edit the audit logs for any user and can lead to CSV injection. |
CVE-2023-47298 | Medium | 4.3 | 2025-06-23 | An issue in NCR Terminal Handler 1.5.1 allows a low-level privileged authenticated attacker to query the SOAP API endpoint to obtain information about all of t… |