An Anti CSRF mechanism was discovered missing in the Teradici Cloud Access Connector v31 and earlier in a specific web form, which allowed an attacker with knowledge of both a machineID and user GUID to modify data if a user clicked a malicious link.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://advisory.teradici.com/security-advisories/70/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: Teradici
Published: 2021-02-11T15:14:48
Updated: 2024-08-04T12:11:19.410Z
Reserved: 2020-05-19T00:00:00
Link: CVE-2020-13186
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-02-11T18:15:14.127
Modified: 2024-11-21T05:00:49.280
Link: CVE-2020-13186
Redhat
No data.