Lucene search
+L

190 matches found

CVE
CVE
added 2020/08/11 5:31 p.m.49 views

CVE-2020-13174

The CVE-2020-13174 entry affects the Teradici Management Console, specifically the web server in versions 20.04 and 20.01.1. The root cause is that the X-Frame-Options HTTP header was not properly set, enabling clickjacking or UI redress attacks by tricking users into clicking malicious links. Co...

6.1CVSS6.2AI score0.00661EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/08/11 5:31 p.m.25 views

CVE-2020-13174

The web server in the Teradici Managament console versions 20.04 and 20.01.1 did not properly set the X-Frame-Options HTTP header, which could allow an attacker to trick a user into clicking a malicious link via clickjacking...

6.2AI score0.00661EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/08/11 12:0 a.m.8 views

PT-2020-13373 · Teradici · Teradici Management Console

Name of the Vulnerable Software and Affected Versions: Teradici Management console versions 20.04 and 20.01.1 Description: The web server in the Teradici Management console did not properly set the X-Frame-Options HTTP header, which could allow an attacker to trick a user into clicking a maliciou...

6.1CVSS6.2AI score0.00661EPSS
Exploits0References5
CNVD
CNVD
added 2020/05/29 12:0 a.m.6 views

Unspecified Vulnerability in Teradici PCoIP Standard Agent and Teradici PCoIP Graphics Agent

Teradici PCoIP Standard Agent and Teradici PCoIP Graphics Agent are both products of Teradici Canada.Teradici PCoIP Standard Agent is an agent program for connecting virtual desktops.Teradici PCoIP Graphics Agent is an agent program that provides GPU-enabled physical and virtual workstations to...

7.8CVSS6.3AI score0.00232EPSS
Exploits0References1
OSV
OSV
added 2020/05/28 10:15 p.m.3 views

CVE-2020-13173

Initialization of the pcoipcredentialprovider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installin...

7.8CVSS7.1AI score0.00232EPSS
Exploits0References1
NVD
NVD
added 2020/05/28 10:15 p.m.22 views

CVE-2020-13173

Initialization of the pcoipcredentialprovider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installin...

7.8CVSS7.7AI score0.00232EPSS
Exploits0References1
Prion
Prion
added 2020/05/28 10:15 p.m.13 views

Code injection

Initialization of the pcoipcredentialprovider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installin...

4.6CVSS7.7AI score0.00232EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2020/05/28 9:5 p.m.103 views

CVE-2020-13173

The CVE affects Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows, versions 19.11.1 and earlier. It arises from the initialization of pcoip_credential_provider which creates an insecure named pipe, enabling an attacker to intercept sensitive information or potentially...

7.8CVSS7.6AI score0.00232EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2020/05/28 9:5 p.m.21 views

CVE-2020-13173

Initialization of the pcoipcredentialprovider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installin...

7.8AI score0.00232EPSS
Exploits0References1
CNVD
CNVD
added 2020/03/26 12:0 a.m.3 views

Teradici PCoIP Management Console Security Vulnerability

Teradici PCoIP Management Console is a console program for managing PCoIP clients from Teradici Canada. A security vulnerability exists in Teradici PCoIP Management Console versions 20.01.0 and 19.11.1. The vulnerability can be exploited by an attacker to reset a password without authentication...

8.1CVSS7.2AI score0.01439EPSS
Exploits1
NVD
NVD
added 2020/03/25 11:15 p.m.15 views

CVE-2020-10965

Teradici PCoIP Management Console 20.01.0 and 19.11.1 is vulnerable to unauthenticated password resets via login/resetadminpassword of the default admin account. This vulnerability only exists when the default admin account is not disabled. It is fixed in 20.01.1 and 19.11.2...

8.1CVSS8.1AI score0.01439EPSS
Exploits1References2
OSV
OSV
added 2020/03/25 11:15 p.m.6 views

CVE-2020-10965

Teradici PCoIP Management Console 20.01.0 and 19.11.1 is vulnerable to unauthenticated password resets via login/resetadminpassword of the default admin account. This vulnerability only exists when the default admin account is not disabled. It is fixed in 20.01.1 and 19.11.2...

8.1CVSS7.3AI score0.01439EPSS
Exploits1References2
Prion
Prion
added 2020/03/25 11:15 p.m.12 views

Design/Logic Flaw

Teradici PCoIP Management Console 20.01.0 and 19.11.1 is vulnerable to unauthenticated password resets via login/resetadminpassword of the default admin account. This vulnerability only exists when the default admin account is not disabled. It is fixed in 20.01.1 and 19.11.2...

6.8CVSS8AI score0.01439EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/03/25 10:53 p.m.16 views

CVE-2020-10965

Teradici PCoIP Management Console 20.01.0 and 19.11.1 is vulnerable to unauthenticated password resets via login/resetadminpassword of the default admin account. This vulnerability only exists when the default admin account is not disabled. It is fixed in 20.01.1 and 19.11.2...

8.1AI score0.01439EPSS
Exploits1References2
CVE
CVE
added 2020/03/25 10:53 p.m.82 views

CVE-2020-10965

The vulnerability affects Teradici PCoIP Management Console versions 19.11.1 through 20.01.0. It allows unauthenticated password resets via the login/resetadminpassword endpoint for the default admin account, only when that account is not disabled. A fix is available in 19.11.2 and 20.01.1. Remed...

8.1CVSS8AI score0.01439EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/03/25 12:0 a.m.6 views

PT-2020-12453 · Teradici · Teradici Pcoip Management Console

Name of the Vulnerable Software and Affected Versions: Teradici PCoIP Management Console versions 19.11.1 through 20.01.0 Description: The issue allows for unauthenticated password resets via the "login/resetadminpassword" endpoint of the default admin account. This is only possible when the...

8.1CVSS8.2AI score0.01439EPSS
Exploits1References4
NVD
NVD
added 2020/01/08 3:15 p.m.19 views

CVE-2019-20362

In Teradici PCoIP Agent before 19.08.1 and PCoIP Client before 19.08.3, an unquoted service path can cause execution of %PROGRAMFILESX86%\Teradici\PCoIP.exe instead of the intended pcoipvchanprintingsvc.exe file...

7.8CVSS7.7AI score0.00661EPSS
Exploits0References1
OSV
OSV
added 2020/01/08 3:15 p.m.6 views

CVE-2019-20362

In Teradici PCoIP Agent before 19.08.1 and PCoIP Client before 19.08.3, an unquoted service path can cause execution of %PROGRAMFILESX86%\Teradici\PCoIP.exe instead of the intended pcoipvchanprintingsvc.exe file...

7.8CVSS7.2AI score0.00661EPSS
Exploits0References1
Prion
Prion
added 2020/01/08 3:15 p.m.17 views

Design/Logic Flaw

In Teradici PCoIP Agent before 19.08.1 and PCoIP Client before 19.08.3, an unquoted service path can cause execution of %PROGRAMFILESX86%\Teradici\PCoIP.exe instead of the intended pcoipvchanprintingsvc.exe file...

7.2CVSS7.6AI score0.00661EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2020/01/08 2:5 p.m.48 views

CVE-2019-20362

The Red Hat and NVD records describe CVE-2019-20362 in Teradici PCoIP Agent (before 19.08.1) and PCoIP Client (before 19.08.3). Root cause: an unquoted service path can cause the system to execute %PROGRAMFILES(X86)%\Teradici\PCoIP.exe instead of the intended pcoip_vchan_printing_svc.exe. Affecte...

7.8CVSS8.2AI score0.00661EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder