Security Advisory
CVE-2023-47298
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An issue in NCR Terminal Handler 1.5.1 allows a low-level privileged authenticated attacker to query the SOAP API endpoint to obtain information about all of the users of the application including their usernames, roles, security groups and account statuses.