Triggering an unsupported TLS alert can cause the SSL module in Teradici Zero Client firmware and Teradici Remote Workstation Hostcard firmware to crash, resulting in a denial of service.
The SSL module in Teradici Zero Client Firmware and Teradici Remote Workstation Hostcard Firmware before 20.07.3, 20.04.5 and 17.05.4 may crash when unsupported TLS alerts are triggered, allowing an attacker to create a denial of service.
Vulnerability classification has been performed using the CVSSv3 scoring system. The CVSS environmental score is specific to each customer’s environment and should be defined by the customer to attain a final scoring.
9 Feb. 2021: Initial Publication
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. TERADICI RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.