Terminal Handler Security Vulnerabilities and Issues — Terminal Handler CVE List

Lucene search

NcrTerminal Handler

6 matches found

CVE•added 2025/06/23 6:15 p.m.•8 views

CVE-2023-47029

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted POST request to the UserService component

9.8CVSS7.2AI score0.00369EPSS

CVE•added 2025/06/23 8:15 p.m.•8 views

CVE-2023-47030

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a GET request to a UserService SOAP API endpoint to validate if a user exists.

9.8CVSS7.3AI score0.00412EPSS

CVE•added 2025/06/23 5:15 p.m.•7 views

CVE-2023-47031

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to escalate privileges via a crafted POST request to the grantRolesToUsers, grantRolesToGroups, and grantRolesToOrganization SOAP API component.

9.8CVSS7.3AI score0.00146EPSS

CVE•added 2025/06/23 4:15 p.m.•7 views

CVE-2023-47032

Password Vulnerability in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the UserService SOAP API function.

9.8CVSS8AI score0.00412EPSS

CVE•added 2025/06/23 4:15 p.m.•6 views

CVE-2023-47295

A CSV injection vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands via injecting a crafted payload into any text field that accepts strings.

9.8CVSS7.7AI score0.00087EPSS

CVE•added 2025/06/23 3:15 p.m.•6 views

CVE-2023-47297

A settings manipulation vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands, including editing system security auditing configurations.

9.8CVSS7.3AI score0.00075EPSS