CNNVD-202506-2965 Information

Jun 23, 2025 cve

CNNVD ID

CNNVD-202506-2965

CVE-2023-47032

CNNVD Published: 2025-06-23

Description (Chinese)

NCR Atleos Terminal Handler是NCR Atleos公司的一款 ATM 企业软件解决方案，可降低成本、提高业务敏捷性并提高您的竞争优势。 NCR Atleos Terminal Handler 1.5.1版本存在安全漏洞，该漏洞源于UserService SOAP API函数对特制脚本处理不当，可能导致执行任意代码。

Description (English)

NCR Atleos Terminal Handler is an ATM enterprise software solution for NCR Atleos that reduces costs, improves business agility and enhances your competitive advantage. There is a security loophole in version 1.5.1 of NCR Atleos Terminal Handler, which stems from the inappropriate handling of custom scripts by the UserService SOAP API function, which may result in the execution of any code.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Ncvav

Published

2025-06-23

Last Modified

2026-02-24

References

https://drive.google.com/file/d/1rTKc2nxEc40VTItJiJ9moZ5VrHG3xQuj/view?usp=sharing https://github.com/pwahba/cve-research/blob/main/CVE-2023-47032/CVE-2023-47032.md https://access.redhat.com/security/cve/cve-2023-47032

Share on: