Every CVE whose affected-product data names Ncr Terminal Handler, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2023-47031 — CVSS 9.8 (critical): An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to escalate privileges via a crafted POST request to the…
CVE-2023-47029 — CVSS 9.8 (critical): An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted…
CVE-2023-47030 — CVSS 9.8 (critical): An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a GET…
CVE-2023-47297 — CVSS 9.8 (critical): A settings manipulation vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands, including editing…
CVE-2023-47032 — CVSS 9.8 (critical): Password Vulnerability in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the…
CVE-2023-47295 — CVSS 9.8 (critical): A CSV injection vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands via injecting a crafted payload…
CVE-2023-47294 — CVSS 8.1 (high): An issue in NCR Terminal Handler v1.5.1 allows low-level privileged authenticated attackers to arbitrarily deactivate, lock, and delete…
CVE-2023-47022 — CVSS 6.5 (medium): Insecure Direct Object Reference in NCR Terminal Handler v.1.5.1 allows an unprivileged user to edit the audit logs for any user and can…
CVE-2023-47298 — CVSS 4.3 (medium): An issue in NCR Terminal Handler 1.5.1 allows a low-level privileged authenticated attacker to query the SOAP API endpoint to obtain…