Memory write mechanism in NCR S2 Dispenser controller before firmware version 0x0108 allows an unauthenticated user to upgrade or downgrade the firmware of the device, including to older versions with known vulnerabilities.
Advisories
Source ID Title
EUVD EUVD EUVD-2018-17486 Memory write mechanism in NCR S2 Dispenser controller before firmware version 0x0108 allows an unauthenticated user to upgrade or downgrade the firmware of the device, including to older versions with known vulnerabilities.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T05:40:51.283Z

Reserved: 2018-01-16T00:00:00

Link: CVE-2018-5717

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-03-20T14:29:00.523

Modified: 2024-11-21T04:09:14.297

Link: CVE-2018-5717

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.