CRITICAL🇵🇱 Wersja polska

CVE-2023-47295

CVSS 9.8v3.1pub. 2025-06-23upd. 2025-06-25

A CSV injection vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands via injecting a crafted payload into any text field that accepts strings.

🤖 AI Analysis
How it works

An attacker injects a specially crafted payload into any text field accepting character strings in the NCR Terminal Handler application. This data is then exported or processed in CSV format without proper sanitization, leading to execution of embedded formulas or commands — for example through a spreadsheet application or other CSV parser opening the generated file. This mechanism is a classic example of formula injection attack, where malicious input data is interpreted as instructions by software processing CSV.

Impact

An attacker can execute arbitrary commands in the context of the system or application processing the infected CSV file, which can lead to complete system takeover, disclosure of sensitive data, or breach of service integrity and availability.

Mitigation & patch

Apply patches available from the vendor according to the references. Until updates are applied, it is recommended to restrict access to text fields in the application exclusively to trusted users and implement input validation and sanitization on the server side, blocking special characters characteristic of CSV formulas (e.g., =, +, -, @).

Who is affected

NCR Terminal Handler v1.5.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ncr Terminal Handler

    APP
    Ncr
    1.5.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-47297CRITICAL9.8PL ✓ten sam produkt

NCR Terminal Handler — manipulacja ustawieniami umożliwia wykonanie dowolnych poleceń

CVE-2023-47029CRITICAL9.8PL ✓ten sam produkt

RCE i wyciek danych w NCR Terminal Handler przez komponent UserService

CVE-2023-47030CRITICAL9.8PL ✓ten sam produkt

RCE w NCR Terminal Handler via SOAP API — nieuwierzytelniony dostęp zdalny

CVE-2023-47031CRITICAL9.8PL ✓ten sam produkt

NCR Terminal Handler – privilege escalation przez SOAP API

CVE-2023-47032CRITICAL9.8PL ✓ten sam produkt

RCE w NCR Terminal Handler v.1.5.1 przez SOAP API