QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2020-13176

Back to search

CVE-2020-13176

Published: Aug 11, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

The Management Interface of the Teradici Cloud Access Connector and Cloud Access Connector Legacy for releases prior to April 24, 2020 (v16 and earlier for the Cloud Access Connector) contains a stored cross-site scripting (XSS) vulnerability which allows a remote unauthenticated attacker to poison log files with malicious JavaScript via the login page which is executed when an administrator views the logs within the application.

VendorProductVersions

n/a

- Cloud Access Connector - Cloud Access Connector Legacy

affected
Cloud Access Connector Legacy prior to April 24, 2020, Cloud Access Connector, v16 and earlier)

Weaknesses (CWE)

CWE-79

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2020-13176 - Security Vulnerability | QwikSec