Metrics
Affected Vendors & Products
Source | ID | Title |
---|---|---|
![]() |
EUVD-2023-51425 | An issue in NCR Terminal Handler 1.5.1 allows a low-level privileged authenticated attacker to query the SOAP API endpoint to obtain information about all of the users of the application including their usernames, roles, security groups and account statuses. |
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Thu, 26 Jun 2025 13:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Ncr
Ncr terminal Handler |
|
CPEs | cpe:2.3:a:ncr:terminal_handler:1.5.1:*:*:*:*:*:*:* | |
Vendors & Products |
Ncr
Ncr terminal Handler |
Tue, 24 Jun 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-200 | |
Metrics |
cvssV3_1
|
Mon, 23 Jun 2025 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An issue in NCR Terminal Handler 1.5.1 allows a low-level privileged authenticated attacker to query the SOAP API endpoint to obtain information about all of the users of the application including their usernames, roles, security groups and account statuses. | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-06-24T15:54:26.649Z
Reserved: 2023-11-06T00:00:00.000Z
Link: CVE-2023-47298

Updated: 2025-06-24T13:48:46.584Z

Status : Analyzed
Published: 2025-06-23T15:15:26.700
Modified: 2025-06-26T12:44:00.433
Link: CVE-2023-47298

No data.

Updated: 2025-06-27T09:26:49Z