Vulnerabilities > Barco
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2022-26971 | Missing Authentication for Critical Function vulnerability in Barco Control Room Management Suite Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. | 5.3 |
| 2022-06-02 | CVE-2022-26972 | Cross-site Scripting vulnerability in Barco Control Room Management Suite Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /cgi-bin endpoint. | 4.3 |
| 2022-06-02 | CVE-2022-26973 | Information Exposure Through an Error Message vulnerability in Barco Control Room Management Suite Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. | 5.0 |
| 2022-06-02 | CVE-2022-26974 | Cross-site Scripting vulnerability in Barco Control Room Management Suite Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a file upload mechanism. | 4.3 |
| 2022-06-02 | CVE-2022-26975 | Improper Authentication vulnerability in Barco Control Room Management Suite Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing log files without authentication. | 5.0 |
| 2022-06-02 | CVE-2022-26976 | Cross-site Scripting vulnerability in Barco Control Room Management Suite Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. | 3.5 |
| 2022-06-02 | CVE-2022-26977 | Cross-site Scripting vulnerability in Barco Control Room Management Suite Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. | 4.3 |
| 2022-06-02 | CVE-2022-26978 | Cross-site Scripting vulnerability in Barco Control Room Management Suite Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /checklogin.jsp endpoint. | 4.3 |
| 2022-04-03 | CVE-2022-26233 | Path Traversal vulnerability in Barco Control Room Management Suite Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to directory traversal, allowing attackers to access sensitive information and components. | 5.0 |
| 2021-09-07 | CVE-2021-38142 | Cleartext Transmission of Sensitive Information vulnerability in Barco Mirrorop Windows Sender Barco MirrorOp Windows Sender before 2.5.3.65 uses cleartext HTTP and thus allows rogue software upgrades. | 7.2 |