34 matches found
📄 NCR Command Center Agent 16.3 Remote Code Execution
CMCAgent in NCR Command Center Agent version 16.3 on Aloha POS/BOH servers permits the submission of a runCommand parameter within an XML document sent to port 8089 that enables the remote, unauthenticated execution of an arbitrary command as SYSTEM, as exploited in the wild in 2020 and/or 2021...
EUVD-2014-7204
Malware in sbrugna...
EUVD-2014-7188
Malware in sbrugna...
EUVD-2014-6690
Malware in sbrugna...
EUVD-2014-6659
Malware in sbrugna...
MAL-2025-34866 Malicious code in test-mlw2-aloha-miner (npm)
The package test-mlw2-aloha-miner was found to contain malicious code...
Malicious code in test-mlw2-aloha-miner (npm)
The package test-mlw2-aloha-miner was found to contain malicious code...
alohatravel.cz Cross Site Scripting vulnerability OBB-3895712
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
aloha-sd (>=1.0.0 <=1.0.7) potentially affected by CVE-2021-23386 via dns-packet (=1.1.1)
dns-packet NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on dns-packet and may be impacted: - aloha-sd =1.0.0, =1.0.7 Source cves: CVE-2021-23386 Source advisory: OSV:GHSA-3WCQ-X3MQ-6R9P...
aloha-sd (>=1.0.0 <=1.0.7) potentially affected by CVE-2021-23386 via dns-packet (=1.1.1)
dns-packet NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on dns-packet and may be impacted: - aloha-sd =1.0.0, =1.0.7 Source cves: CVE-2021-23386 Source advisory: SNYK:JS-DNSPACKET-1293563...
Design/Logic Flaw
CMCAgent in NCR Command Center Agent 16.3 on Aloha POS/BOH servers permits the submission of a runCommand parameter within an XML document sent to port 8089 that enables the remote, unauthenticated execution of an arbitrary command as SYSTEM, as exploited in the wild in 2020 and/or 2021. NOTE: th...
CVE-2021-3122
CMCAgent in NCR Command Center Agent 16.3 on Aloha POS/BOH servers permits the submission of a runCommand parameter within an XML document sent to port 8089 that enables the remote, unauthenticated execution of an arbitrary command as SYSTEM, as exploited in the wild in 2020 and/or 2021. NOTE: th...
CVE-2021-3122
CVE-2021-3122 affects NCR Command Center Agent 16.3 on Aloha POS/BOH servers. The CMCAgent processes a runCommand parameter inside an XML document sent to port 8089, enabling remote unauthenticated execution of arbitrary commands as SYSTEM. Exploitation in the wild reported in 2020–2021. Vendor n...
shop.aloha-attitude.fr Cross Site Scripting vulnerability OBB-1233786
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
aloha-street.com Cross Site Scripting vulnerability OBB-1220002
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
aloha-street.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1172795 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
Mahalo FIN7: Responding to the Criminal Operators’ New Tools and Techniques
During several recent incident response engagements, FireEye Mandiant investigators uncovered new tools in FIN7’s malware arsenal and kept pace as the global criminal operators attempted new evasion techniques. In this blog, we reveal two of FIN7’s new tools that we have called BOOSTWRITE and...
NCR Aloha POS SOAP API Detection
Binary data ncralohaposwebdetect.nbin...
NCR Aloha POS SMB Default Credentials
The remote NCR Aloha POS device is running with default credentials aloha / aloha. A remote, unauthenticated attacker could exploit this to take control of the system. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid108716; scriptversion"1.2"; scriptcvsdate"Date:...
CVE-2014-7333
The Aloha Guide aka com.aloha.guide.japnese application 1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...