CVE-2020-13186

2021-02-1115:14:48

CWE-352

Teradici

www.cve.org

0.001 Low

EPSS

Percentile

21.8%

JSON

An Anti CSRF mechanism was discovered missing in the Teradici Cloud Access Connector v31 and earlier in a specific web form, which allowed an attacker with knowledge of both a machineID and user GUID to modify data if a user clicked a malicious link.

CNA Affected

[
  {
    "product": "- Cloud Access Connector - Cloud Access Connector Legacy",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "v31 and earlier"
      }
    ]
  }
]

References

advisory.teradici.com/security-advisories/70/

0.001 Low

EPSS

Percentile

21.8%

JSON

Related for CVELIST:CVE-2020-13186