CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-47030

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via a GET request to a UserService SOAP API endpoint to validate if a user exists.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.9%

CVSS Severity

CVSS v3 Score 9.8

References

https://drive.google.com/file/d/1ujUcB8XEs78WwWzs8cmD-u1Twqi10yEh/view?usp=sharing
https://github.com/pwahba/cve-research/blob/main/CVE-2023-47030/CVE-2023-47030.md

Products affected by CVE-2023-47030

Ncr » Terminal Handler » Version: 1.5.1

cpe:2.3:a:ncr:terminal_handler:1.5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-47030

Products

Pricing

Contact Us