NCR Terminal Handler Password Vulnerability Allowing Brute-Force Attacks and Account Lockout Policy Bypass

Vulnerability

A vulnerability in NCR Terminal Handler version 1.5.1 allows remote attackers to bypass account lockout policies and conduct password brute-force attacks. This is achieved by sending crafted requests to the UserService SOAP API, specifically through the validate function, which does not properly enforce lockout or rate-limiting controls. As a result, attackers can exploit this weakness to gain unauthorized access to user accounts by overwhelming the system with login attempts, disregarding any existing security measures designed to prevent such actions.

Impact

Exploitation of this vulnerability can lead to unauthorized access to user accounts by allowing high-volume brute-force attempts, effectively circumventing any configured lockout policies.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

4.7

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

4.7

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NCR Terminal Handler Password Vulnerability Allowing Brute-Force Attacks and Account Lockout Policy Bypass

Vulnerability

Impact

Affected Products

NCR Terminal Handler

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating