CVE-2020-13176

CVE-2020-13176

Vendor N/A

Product - Cloud Access Connector - Cloud Access Connector Legacy

Weakness CWE-79 · XSS

Published August 11, 2020

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The Management Interface of the Teradici Cloud Access Connector and Cloud Access Connector Legacy for releases prior to April 24, 2020 (v16 and earlier for the Cloud Access Connector) contains a stored cross-site scripting (XSS) vulnerability which allows a remote unauthenticated attacker to poison log files with malicious JavaScript via the login page which is executed when an administrator views the logs within the application.

Key dates

02Disclosure timeline

August 11, 2020 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-13176 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/79.html

Related vulnerabilities

Identifiers

CVE CVE-2020-13176

CWE CWE-79

Affected versions

Vendor N/A

Product - Cloud Access Connector - Cloud Access Connector Legacy

Affected Cloud Access Connector Legacy prior to April 24, 2020, Cloud Access Connector, v16 and earlier)

01Description

02Disclosure timeline

03References

04Related CVE