CVE-2020-10124
First published: Fri Aug 21 2020(Updated: )
NCR SelfServ ATMs running APTRA XFS 05.01.00 do not encrypt, authenticate, or verify the integrity of messages between the BNA and the host computer, which could allow an attacker with physical access to the internal components of the ATM to execute arbitrary code, including code that enables the attacker to commit deposit forgery.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ncr Aptra Xfs | =05.01.00 | |
| NCR SelfServ ATM |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/ncr
- canonical/ncr aptra xfs
- version/ncr aptra xfs/05.01.00
- canonical/ncr selfserv atm