Ncr Terminal Handler
By the Year
In 2024 there have been 2 vulnerabilities in Ncr Terminal Handler with an average score of 7.7 out of ten. Terminal Handler did not have any published security vulnerabilities last year. That is, 2 more vulnerabilities have already been reported in 2024 as compared to last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 2 | 7.65 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Terminal Handler vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Ncr Terminal Handler Security Vulnerabilities
Insecure Direct Object Reference in NCR Terminal Handler v.1.5.1
CVE-2023-47022
6.5 - Medium
- February 06, 2024
Insecure Direct Object Reference in NCR Terminal Handler v.1.5.1 allows an unprivileged user to edit the audit logs for any user and can lead to CSV injection.
Insecure Direct Object Reference / IDOR
Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover
CVE-2023-47024
8.8 - High
- January 20, 2024
Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover. This is achieved by exploiting multiple vulnerabilities, including an undisclosed function in the WSDL that has weak security controls and can accept custom content types.
Session Riding
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Ncratleos Terminal Handler or by Ncr? Click the Watch button to subscribe.