{"id":55678,"date":"2025-06-28T02:19:04","date_gmt":"2025-06-28T02:19:04","guid":{"rendered":""},"modified":"2025-10-03T12:32:29","modified_gmt":"2025-10-03T18:32:29","slug":"cve-2023-47297-dangerous-settings-manipulation-vulnerability-in-ncr-terminal-handler-v1-5-1","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2023-47297-dangerous-settings-manipulation-vulnerability-in-ncr-terminal-handler-v1-5-1\/","title":{"rendered":"CVE-2023-47297: Dangerous Settings Manipulation Vulnerability in NCR Terminal Handler v1.5.1<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

In the realm of cybersecurity, one of the most recently discovered vulnerabilities resides in the NCR Terminal Handler v1.5.1. This vulnerability, designated CVE-2023-47297, allows potential attackers to manipulate the settings in such a way that they could execute arbitrary commands. The issue is significant because it offers the potential for system<\/a> security auditing configurations to be altered, therefore opening the doors to potential system compromise or data leakage.
\nAs a cybersecurity<\/a> professional, it\u2019s crucial to understand the implications of this vulnerability, who it affects, and how it can be mitigated. This vulnerability primarily affects users and administrators of the NCR Terminal Handler v1.5.1, and the potential ramifications of an exploited vulnerability can be severe<\/a>, given the high severity rating of 9.8.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2023-47297
\nSeverity: Critical, with a CVSS score of 9.8
\nAttack Vector: Network
\nPrivileges Required: Low
\nUser Interaction: None
\nImpact: Potential system<\/a> compromise and data leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n