Unrated severityNVD Advisory· Published Jan 20, 2024· Updated Jun 17, 2025
CVE-2023-47024
CVE-2023-47024
Description
Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover. This is achieved by exploiting multiple vulnerabilities, including an undisclosed function in the WSDL that has weak security controls and can accept custom content types.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: =1.5.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.