Teradici · Teradici Pcoip Management Console · CVE-2020-10965
**Name of the Vulnerable Software and Affected Versions**
Teradici PCoIP Management Console versions 19.11.1 through 20.01.0
**Description**
The issue allows for unauthenticated password resets via the "login/resetadminpassword" endpoint of the default admin account. This is only possible when the default admin account is not disabled.
**Recommendations**
For versions 19.11.1 and 20.01.0, update to version 19.11.2 or 20.01.1 to resolve the issue.
As a temporary workaround, consider disabling the default admin account until a patch is available.