An Anti CSRF mechanism exists missing in the Teradici Cloud Access Connector v31 and previous versions in a specific web form, which allowed an attacker with knowledge of both a machineID and user GUID to modify data if a user clicked a malicious link.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
teradici cloud access connector |