Ncratleos Terminal Handler
By the Year
In 2024 there have been 2 vulnerabilities in Ncratleos Terminal Handler with an average score of 8.8 out of ten. Terminal Handler did not have any published security vulnerabilities last year. That is, 2 more vulnerabilities have already been reported in 2024 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 2 | 8.80 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Terminal Handler vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Ncratleos Terminal Handler Security Vulnerabilities
Multiple Cross-Site Request Forgery (CSRF) chaining in NCR Terminal Handler v.1.5.1
CVE-2023-47020
8.8 - High
- February 08, 2024
Multiple Cross-Site Request Forgery (CSRF) chaining in NCR Terminal Handler v.1.5.1 allows privileges to be escalated by an attacker through a crafted request involving user account creation and adding the user to an administrator group. This is exploited by an undisclosed function in the WSDL that lacks security controls and can accept custom content types.
Session Riding
Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover
CVE-2023-47024
8.8 - High
- January 20, 2024
Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover. This is achieved by exploiting multiple vulnerabilities, including an undisclosed function in the WSDL that has weak security controls and can accept custom content types.
Session Riding
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Ncratleos Terminal Handler or by Ncratleos? Click the Watch button to subscribe.
