CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Password Vulnerability in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the UserService SOAP API function...

9.8CVSS8.1AI score0.02048EPSS

Exploits1References1

RedhatCVE•added 2025/06/25 12:53 a.m.•5 views

CVE-2023-47298

An issue in NCR Terminal Handler 1.5.1 allows a low-level privileged authenticated attacker to query the SOAP API endpoint to obtain information about all of the users of the application including their usernames, roles, security groups and account statuses...

4.3CVSS6.7AI score0.00191EPSS

Exploits1References1

RedhatCVE•added 2025/06/25 12:53 a.m.•1 views

CVE-2023-47295

A CSV injection vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands via injecting a crafted payload into any text field that accepts strings...

9.8CVSS8.2AI score0.00478EPSS

Exploits1References1

RedhatCVE•added 2025/06/25 12:53 a.m.•2 views

CVE-2023-47029

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted POST request to the UserService component...

9.8CVSS7.8AI score0.0225EPSS

Exploits1References1

RedhatCVE•added 2025/06/25 12:53 a.m.•2 views

CVE-2023-47294

An issue in NCR Terminal Handler v1.5.1 allows low-level privileged authenticated attackers to arbitrarily deactivate, lock, and delete user accounts via a crafted session cookie...

8.1CVSS6.8AI score0.00227EPSS

Exploits1References1

RedhatCVE•added 2025/06/25 12:53 a.m.•5 views

CVE-2023-47031

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to escalate privileges via a crafted POST request to the grantRolesToUsers, grantRolesToGroups, and grantRolesToOrganization SOAP API component...

9.8CVSS7.4AI score0.00723EPSS

Exploits1References1

RedhatCVE•added 2025/06/25 12:53 a.m.•4 views

CVE-2023-47030

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a GET request to a UserService SOAP API endpoint to validate if a user exists...

9.8CVSS7.9AI score0.02048EPSS

Exploits1References1

RedhatCVE•added 2025/06/25 12:53 a.m.•4 views

CVE-2023-47297

A settings manipulation vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands, including editing system security auditing configurations...

9.8CVSS8AI score0.00441EPSS

Exploits1References1

OSV•added 2025/06/23 8:15 p.m.•0 views

CVE-2023-47030

9.8CVSS6.1AI score0.02048EPSS

Exploits1References2

NVD•added 2025/06/23 8:15 p.m.•4 views

CVE-2023-47030

9.8CVSS0.02048EPSS

Exploits1References2

OSV•added 2025/06/23 6:15 p.m.•1 views

CVE-2023-47029

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted POST request to the UserService component...

9.8CVSS6.1AI score0.0225EPSS

Exploits1References2

NVD•added 2025/06/23 6:15 p.m.•3 views

CVE-2023-47029

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted POST request to the UserService component...

9.8CVSS0.0225EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by