cvedb.io
CVE-2022-1805
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2022-07-28T15:15:07.553 · Last modified 2026-06-17T04:23:08.733

Summary

When connecting to Amazon Workspaces, the SHA256 presented by AWS connection provisioner is not fully verified by Zero Clients. The issue could be exploited by an adversary that places a MITM (Man in the Middle) between a zero client and AWS session provisioner in the network. This issue is only applicable when connecting to an Amazon Workspace from a PCoIP Zero Client.

Affected products

teradici — tera2_pcoip_zero_client_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when teradici ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.