Vulnerabilities > CVE-2020-13175 - Inclusion of Functionality from Untrusted Control Sphere vulnerability in Teradici products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
The Management Interface of the Teradici Cloud Access Connector and Cloud Access Connector Legacy for releases prior to April 20, 2020 (v15 and earlier for Cloud Access Connector) contains a local file inclusion vulnerability which allows an unauthenticated remote attacker to leak LDAP credentials via a specially crafted HTTP request.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 7 |