Security Advisory

CVE-2023-47298

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-23 00:00:00
Last updated 2025-06-24 15:54:26
Assigner mitre
State PUBLISHED

Description

An issue in NCR Terminal Handler 1.5.1 allows a low-level privileged authenticated attacker to query the SOAP API endpoint to obtain information about all of the users of the application including their usernames, roles, security groups and account statuses.