Vulnerabilities > Teradici > Pcoip Management Console > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-07 | CVE-2021-35451 | Cross-site Scripting vulnerability in Teradici Pcoip Management Console 20.07.0 In Teradici PCoIP Management Console-Enterprise 20.07.0, an unauthenticated user can inject arbitrary text into user browser via the Web application. | 6.1 |
| 2020-08-17 | CVE-2020-13183 | Cross-site Scripting vulnerability in Teradici Pcoip Management Console Reflected Cross Site Scripting in Teradici PCoIP Management Console prior to 20.07 could allow an attacker to take over the user's active session if the user is exposed to a malicious payload. | 6.1 |
| 2020-08-11 | CVE-2020-13174 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Teradici Pcoip Management Console 20.01.1/20.04 The web server in the Teradici Managament console versions 20.04 and 20.01.1 did not properly set the X-Frame-Options HTTP header, which could allow an attacker to trick a user into clicking a malicious link via clickjacking. | 6.1 |