An Anti CSRF mechanism was discovered missing in the Teradici Cloud Access Connector v31 and earlier in a specific web form, which allowed an attacker with knowledge of both a machineID and user GUID to modify data if a user clicked a malicious link.
CPE | Name | Operator | Version |
---|---|---|---|
cloud_access_connector | le | 31 |