CNNVD-202506-2977 Information

Jun 23, 2025 cve

CNNVD ID

CNNVD-202506-2977

CVE-2023-47029

CNNVD Published: 2025-06-23

Description (Chinese)

NCR Atleos Terminal Handler是NCR Atleos公司的一款 ATM 企业软件解决方案，可降低成本、提高业务敏捷性并提高您的竞争优势。 NCR Atleos Terminal Handler 1.5.1版本存在安全漏洞，该漏洞源于UserService组件对特制POST请求处理不当，可能导致执行任意代码和获取敏感信息。

Description (English)

NCR Atleos Terminal Handler is an ATM enterprise software solution for NCR Atleos that reduces costs, improves business agility and enhances your competitive advantage. NCR Atleos Telminal Handler 1.5.1 has a security loophole, which stems from the inappropriate handling of specialized POST requests by the UserService component, which may lead to the enforcement of arbitrary codes and access to sensitive information.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Ncvav

Published

2025-06-23

Last Modified

2026-02-24

References

https://drive.google.com/file/d/1oX5uKnWGiYMaBxnBuqPiOA53XLxv1Ef4/view?usp=sharing https://github.com/pwahba/cve-research/blob/main/CVE-2023-47029/CVE-2023-47029.md https://access.redhat.com/security/cve/cve-2023-47029

Share on: