CVE-2019-18828
- EPSS 0.1%
- Veröffentlicht 16.12.2019 17:15:12
- Zuletzt bearbeitet 21.11.2024 04:33:39
Barco ClickShare Button R9861500D01 devices before 1.9.0 have Insufficiently Protected Credentials. The root account (present for access via debug interfaces, which are by default not enabled on production devices) of the embedded Linux on the ClickS...
- EPSS 3.35%
- Veröffentlicht 16.12.2019 17:15:12
- Zuletzt bearbeitet 21.11.2024 04:33:39
Barco ClickShare Button R9861500D01 devices before 1.9.0 allow OS Command Injection. The embedded 'dongle_bridge' program used to expose the functionalities of the ClickShare Button to a USB host, is vulnerable to OS command injection vulnerabilities...
CVE-2019-18831
- EPSS 0.23%
- Veröffentlicht 16.12.2019 17:15:12
- Zuletzt bearbeitet 21.11.2024 04:33:40
Barco ClickShare Button R9861500D01 devices before 1.9.0 allow Information Exposure. The encrypted ClickShare Button firmware contains the private key of a test device-certificate.
CVE-2019-18826
- EPSS 0.23%
- Veröffentlicht 16.12.2019 17:15:11
- Zuletzt bearbeitet 21.11.2024 04:33:39
Barco ClickShare Button R9861500D01 devices before 1.9.0 have Improper Following of a Certificate's Chain of Trust. The embedded 'dongle_bridge' program used to expose the functionalities of the ClickShare Button to a USB host, does not properly vali...
CVE-2019-18827
- EPSS 0.63%
- Veröffentlicht 16.12.2019 17:15:11
- Zuletzt bearbeitet 21.11.2024 04:33:39
On Barco ClickShare Button R9861500D01 devices (before firmware version 1.9.0) JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running code from ROM before handing control over to embedded ...