CVE-2020-13186
CVE-2020-13186
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
11 Feb 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An Anti CSRF mechanism was discovered missing in the Teradici Cloud Access Connector v31 and earlier in a specific web form, which allowed an attacker with knowledge of both a machineID and user GUID to modify data if a user clicked a malicious link.
Affected products
n/a · - Cloud Access Connector - Cloud Access Connector Legacy