← back
CVE-2020-13177

CVE-2020-13177

EPSS 0.4%CWE-427
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
11 Aug 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The support bundler in Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows versions prior to 20.04.1 and 20.07.0 does not use hard coded paths for certain Windows binaries, which allows an attacker to gain elevated privileges via execution of a malicious binary placed in the system path.
Affected products
n/a · - PCoIP Standard Agent for Windows - PCoIP Graphics Agent for Windows

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://advisory.teradici.com/security-advisories/60/