Vulnerabilities > Barco

DATE CVE VULNERABILITY TITLE RISK
2022-06-02 CVE-2022-26971 Missing Authentication for Critical Function vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism.
network
low complexity
barco CWE-306
5.3
2022-06-02 CVE-2022-26972 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /cgi-bin endpoint.
network
low complexity
barco CWE-79
6.1
2022-06-02 CVE-2022-26973 Information Exposure Through an Error Message vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism.
network
low complexity
barco CWE-209
5.3
2022-06-02 CVE-2022-26974 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a file upload mechanism.
network
low complexity
barco CWE-79
6.1
2022-06-02 CVE-2022-26975 Improper Authentication vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing log files without authentication.
network
low complexity
barco CWE-287
7.5
2022-06-02 CVE-2022-26976 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism.
network
low complexity
barco CWE-79
5.4
2022-06-02 CVE-2022-26977 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism.
network
low complexity
barco CWE-79
6.1
2022-06-02 CVE-2022-26978 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /checklogin.jsp endpoint.
network
low complexity
barco CWE-79
6.1
2022-04-03 CVE-2022-26233 Path Traversal vulnerability in Barco Control Room Management Suite
Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to directory traversal, allowing attackers to access sensitive information and components.
network
low complexity
barco CWE-22
7.5
2021-09-07 CVE-2021-38142 Cleartext Transmission of Sensitive Information vulnerability in Barco Mirrorop Windows Sender
Barco MirrorOp Windows Sender before 2.5.3.65 uses cleartext HTTP and thus allows rogue software upgrades.
local
low complexity
barco CWE-319
8.8