CVE-2023-47020

Name of the Vulnerable Software and Affected Versions NCR Terminal Handler version 1.5.1

Description The issue involves Multiple Cross-Site Request Forgery (CSRF) chaining, allowing an attacker to escalate privileges through a crafted request. This request involves user account creation and adding the user to an administrator group. The exploitation is facilitated by an undisclosed function in the WSDL that lacks security controls and can accept custom content types.

Recommendations For NCR Terminal Handler version 1.5.1, consider disabling the WSDL function that lacks security controls until a patch is available to prevent the acceptance of custom content types and mitigate the risk of CSRF chaining. Restrict access to user account creation and administrator group management to minimize the risk of exploitation.