CVE-2023-47294 – NCR Terminal Handler Session Cookie Manipulation Vulnerability

June 23, 2025

CVE ID : CVE-2023-47294

Published : June 23, 2025, 4:15 p.m. | 2 hours, 9 minutes ago

Description : An issue in NCR Terminal Handler v1.5.1 allows low-level privileged authenticated attackers to arbitrarily deactivate, lock, and delete user accounts via a crafted session cookie.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4563 – Kubernetes NodeRestriction Dynamic Resource Allocation Authorization Bypass

Next Article CVE-2023-50450 – Sensopart VISOR Vision Sensors Local Privilege Escalation

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2023-47294 – NCR Terminal Handler Session Cookie Manipulation Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2025-49794 – “Libxml2 Use-After-Free XPath Element Parsing Vulnerability”

CVE-2025-53121 – OpenMNS Horizon Stored XSS Vulnerability

CVE-2025-50213 – Apache Airflow Providers Snowflake Special Element Injection

Windows WEBDAV 0-Day RCE Vulnerability Actively Exploited in the Wild – All Versions Affected

Argo CD Security Flaw Rated 9.8 Leaves GitOps Repositories Exposed

UK NCA Arrests Four in Cyberattacks on M&S, Co-op, and Harrods

CVE-2025-22421 – Google NotificationContentDescription Lockscreen Information Disclosure

CVE-2025-6525 – “70mai 1S Configuration Handler Improper Authorization Vulnerability”

CVE-2023-47294 – NCR Terminal Handler Session Cookie Manipulation Vulnerability

Related Posts