MEDIUM✓ PATCH🇬🇧 English

CVE-2021-25688

CVSS 5.5v3.1pub. 2021-02-11upd. 2024-11-21

Under certain conditions, Teradici PCoIP Agents for Windows prior to version 20.10.0 and Teradici PCoIP Agents for Linux prior to version 21.01.0 may log parts of a user's password in the application logs.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  • Teradici Pcoip Graphics Agent

    APP
    Teradici
    < 20.10.0< 21.01.0
  • Teradici Pcoip Standard Agent

    APP
    Teradici
    < 20.10.0< 21.01.0
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2021-25698HIGH7.8ten sam produkt

The OpenSSL component of the Teradici PCoIP Standard Agent prior to version 21.07.0 was compiled without the n...

CVE-2021-25694HIGH7.8ten sam produkt

Teradici PCoIP Graphics Agent for Windows prior to 21.03 does not validate NVENC.dll. An attacker could replac...

CVE-2020-13177HIGH7.8ten sam produkt

The support bundler in Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows versions prior...

CVE-2020-13173HIGH7.8ten sam produkt

Initialization of the pcoip_credential_provider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphic...

CVE-2019-20362HIGH7.8ten sam produkt

In Teradici PCoIP Agent before 19.08.1 and PCoIP Client before 19.08.3, an unquoted service path can cause exe...

CVE-2021-25688 — MEDIUM 5.5 | CVEbaza.pl