Remote Code Execution Vulnerability in NCR Terminal Handler
CVE-2023-47029

Currently unrated

Key Information:

Vendor: NCR
Status: NCR Terminal Handler
Vendor: CVE Published:; 23 June 2025

What is CVE-2023-47029?

A vulnerability in NCR Terminal Handler version 1.5.1 permits remote attackers to execute arbitrary code on the system. This is achieved through a specially crafted POST request targeting the UserService component. Successful exploitation could allow attackers to access sensitive information, potentially compromising system integrity and user data.

References

https://drive.google.com/file/d/1oX5uKnWGiYMaBxnBuqPiOA53...

https://github.com/pwahba/cve-research/blob/main/CVE-2023...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 23, 2025
Vulnerability Reserved
Oct 30, 2023