cvelist/2021/25xxx/CVE-2021-25695.json

{
    "data_type": "CVE",
    "data_format": "MITRE",
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2021-25695",
        "ASSIGNER": "security@teradici.com",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "n/a",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "- PCoIP Agent for Windows",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "21.07.0"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Exposed IOCTL with Insufficient Access Control (CWE-782)"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "refsource": "MISC",
                "name": "https://advisory.teradici.com/security-advisories/100/",
                "url": "https://advisory.teradici.com/security-advisories/100/"
            }
        ]
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "The USB vHub in the Teradici PCOIP Software Agent prior to version 21.07.0 would accept commands from any program, which may allow an attacker to elevate privileges by changing the flow of program execution within the vHub driver."
            }
        ]
    }
}
"-Synchronized-Data." 2021-01-26 18:02:19 +00:00			`{`
			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"data_version": "4.0",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2021-25695",`
"-Synchronized-Data." 2021-07-21 15:02:22 +00:00			`"ASSIGNER": "security@teradici.com",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "n/a",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "- PCoIP Agent for Windows",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "21.07.0"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Exposed IOCTL with Insufficient Access Control (CWE-782)"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"refsource": "MISC",`
			`"name": "https://advisory.teradici.com/security-advisories/100/",`
			`"url": "https://advisory.teradici.com/security-advisories/100/"`
			`}`
			`]`
"-Synchronized-Data." 2021-01-26 18:02:19 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2021-07-21 15:02:22 +00:00			`"value": "The USB vHub in the Teradici PCOIP Software Agent prior to version 21.07.0 would accept commands from any program, which may allow an attacker to elevate privileges by changing the flow of program execution within the vHub driver."`
"-Synchronized-Data." 2021-01-26 18:02:19 +00:00			`}`
			`]`
			`}`
			`}`