CRITICAL🇵🇱 Wersja polska

CVE-2023-47029

CVSS 9.8v3.1pub. 2025-06-23upd. 2025-07-02

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted POST request to the UserService component

🤖 AI Analysis
How it works

An attacker sends a specially crafted HTTP POST request to the UserService component of the NCR Terminal Handler application. Improper processing of this request allows arbitrary code execution on the server side and disclosure of sensitive information. The attack requires no authentication or user interaction.

Impact

An attacker can remotely execute arbitrary code on the vulnerable server (RCE) and gain access to sensitive data processed by the application, which may lead to complete system compromise and information disclosure.

Mitigation & patch

Apply patches available from the vendor according to the references. It is also recommended to restrict network access to the UserService component exclusively to trusted IP addresses and monitor HTTP traffic for suspicious POST requests.

Who is affected

NCR Terminal Handler v.1.5.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ncr Terminal Handler

    APP
    Ncr
    1.5.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2023-47297CRITICAL9.8PL ✓ten sam produkt

NCR Terminal Handler — manipulacja ustawieniami umożliwia wykonanie dowolnych poleceń

CVE-2023-47030CRITICAL9.8PL ✓ten sam produkt

RCE w NCR Terminal Handler via SOAP API — nieuwierzytelniony dostęp zdalny

CVE-2023-47031CRITICAL9.8PL ✓ten sam produkt

NCR Terminal Handler – privilege escalation przez SOAP API

CVE-2023-47032CRITICAL9.8PL ✓ten sam produkt

RCE w NCR Terminal Handler v.1.5.1 przez SOAP API

CVE-2023-47295CRITICAL9.8PL ✓ten sam produkt

CSV Injection w NCR Terminal Handler umożliwia wykonanie dowolnych poleceń