High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-03-20	CVE-2017-17668	Incorrect Authorization vulnerability in NCR S1 Dispenser Controller Firmware Memory write mechanism in NCR S1 Dispenser controller before firmware version 0x0156 allows an unauthenticated user to upgrade or downgrade the firmware of the device, including to older versions with known vulnerabilities. network low complexity ncr CWE-863	7.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.