CVE-2020-13185 — MEDIUM (6.5)

Q: How severe is CVE-2020-13185?

CVE-2020-13185 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2020-13185?

Check the references section above for vendor advisories and patch information. Affected products include: Teradici Cloud Access Connector.

Vulnerability Description

Certain web application pages in the authenticated section of the Teradici Cloud Access Connector prior to v18 were accessible without the need to specify authentication tokens, which allowed an attacker in the ability to execute sensitive functions without credentials.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Teradici	Cloud Access Connector	< 18

Related Weaknesses (CWE)

CWE-287 CWE-288

References

https://advisory.teradici.com/security-advisories/69/Release NotesVendor Advisory
https://advisory.teradici.com/security-advisories/69/Release NotesVendor Advisory

FAQ

What is CVE-2020-13185?

CVE-2020-13185 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Certain web application pages in the authenticated section of the Teradici Cloud Access Connector prior to v18 were accessible without the need to specify authentication tokens, which allowed an attac...

How severe is CVE-2020-13185?

CVE-2020-13185 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-13185?

Check the references section above for vendor advisories and patch information. Affected products include: Teradici Cloud Access Connector.