PT-2020-13378 · Teradici · Teradici Pcoip Graphics Agent For Windows+1

Published

2020-08-11

Updated

2021-11-04

CVE-2020-13179

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Teradici PCoIP Standard Agent for Windows versions prior to 20.04.1 Teradici Graphics Agent for Windows versions prior to 20.04.1

Description The issue arises from Broker Protocol messages not being cleaned up in server memory, potentially allowing an attacker to read confidential information from a memory dump. This could occur by forcing a crash during the single sign-on procedure.

Recommendations For Teradici PCoIP Standard Agent for Windows versions prior to 20.04.1, update to version 20.04.1 or later. For Teradici Graphics Agent for Windows versions prior to 20.04.1, update to version 20.04.1 or later.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-212

Related Identifiers

CVE-2020-13179

Affected Products

Teradici Pcoip Graphics Agent For Windows

Teradici Pcoip Standard Agent For Windows

PT-2020-13378 · Teradici · Teradici Pcoip Graphics Agent For Windows+1

CVE-2020-13179

Weakness Enumeration

Related Identifiers

Affected Products

References · 4