CRITICAL🇵🇱 Wersja polska

CVE-2023-47031

CVSS 9.8v3.1pub. 2025-06-23upd. 2026-07-05

An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to escalate privileges via a crafted POST request to the grantRolesToUsers, grantRolesToGroups, and grantRolesToOrganization SOAP API component.

🤖 AI Analysis
How it works

An attacker sends a crafted POST request to SOAP API components: grantRolesToUsers, grantRolesToGroups or grantRolesToOrganization. The application does not properly verify the caller's permissions (CWE-284 – improper access control), allowing an unauthorized person to assign roles to users, groups or organizations in the system. The attack requires no prior authentication or user interaction.

Impact

An attacker can grant themselves or any account high privileges in the system, which in practice means complete takeover of the application and potential access to sensitive data and managed terminals.

Mitigation & patch

Apply patches available from the vendor according to the references. As a temporary measure, it is recommended to restrict network access to the SOAP API interface only to trusted IP addresses and monitor requests directed to the grantRolesToUsers, grantRolesToGroups and grantRolesToOrganization endpoints.

Who is affected

NCR Terminal Handler v.1.5.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ncr Terminal Handler

    APP
    Ncr
    1.5.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPE
CWE
References

Related vulnerabilities

CVE-2023-47297CRITICAL9.8PL ✓ten sam produkt

NCR Terminal Handler — manipulacja ustawieniami umożliwia wykonanie dowolnych poleceń

CVE-2023-47029CRITICAL9.8PL ✓ten sam produkt

RCE i wyciek danych w NCR Terminal Handler przez komponent UserService

CVE-2023-47030CRITICAL9.8PL ✓ten sam produkt

RCE w NCR Terminal Handler via SOAP API — nieuwierzytelniony dostęp zdalny

CVE-2023-47032CRITICAL9.8PL ✓ten sam produkt

RCE w NCR Terminal Handler v.1.5.1 przez SOAP API

CVE-2023-47295CRITICAL9.8PL ✓ten sam produkt

CSV Injection w NCR Terminal Handler umożliwia wykonanie dowolnych poleceń