First published: Thu Feb 11 2021(Updated: )
Certain web application pages in the authenticated section of the Teradici Cloud Access Connector prior to v18 were accessible without the need to specify authentication tokens, which allowed an attacker in the ability to execute sensitive functions without credentials.
Credit: security@teradici.com
Affected Software | Affected Version | How to fix |
---|---|---|
Teradici Cloud Access Connector | <18 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-13185 is a vulnerability that allows unauthorized access to certain web application pages in the authenticated section of the Teradici Cloud Access Connector prior to v18.
CVE-2020-13185 occurs when certain web application pages in the authenticated section of the Teradici Cloud Access Connector are accessible without the need to specify authentication tokens.
The severity of CVE-2020-13185 is medium, with a severity score of 6.5.
The Teradici Cloud Access Connector versions prior to v18 are affected by CVE-2020-13185.
To fix CVE-2020-13185, it is recommended to update the Teradici Cloud Access Connector to version 18 or higher.