Teradici

Pcoip Management Console

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2017-20121

Exploit
  • EPSS 0.11%
  • Veröffentlicht 30.06.2022 05:15:06
  • Zuletzt bearbeitet 21.11.2024 03:22:41

A vulnerability was found in Teradici Management Console 2.2.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Database Management. The manipulation leads to improper privilege management...

6.1

CVE-2021-35451

Exploit
  • EPSS 0.53%
  • Veröffentlicht 07.07.2021 14:15:12
  • Zuletzt bearbeitet 21.11.2024 06:12:19

In Teradici PCoIP Management Console-Enterprise 20.07.0, an unauthenticated user can inject arbitrary text into user browser via the Web application.

6.1

CVE-2020-13183

  • EPSS 0.36%
  • Veröffentlicht 17.08.2020 21:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:49

Reflected Cross Site Scripting in Teradici PCoIP Management Console prior to 20.07 could allow an attacker to take over the user's active session if the user is exposed to a malicious payload.

6.1

CVE-2020-13174

  • EPSS 0.2%
  • Veröffentlicht 11.08.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:00:48

The web server in the Teradici Managament console versions 20.04 and 20.01.1 did not properly set the X-Frame-Options HTTP header, which could allow an attacker to trick a user into clicking a malicious link via clickjacking.

8.1

CVE-2020-10965

Exploit
  • EPSS 0.47%
  • Veröffentlicht 25.03.2020 23:15:16
  • Zuletzt bearbeitet 21.11.2024 04:56:28

Teradici PCoIP Management Console 20.01.0 and 19.11.1 is vulnerable to unauthenticated password resets via login/resetadminpassword of the default admin account. This vulnerability only exists when the default admin account is not disabled. It is fix...