Vulnerabilities > Barco > Clickshare CSC 1 > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-01-12 | CVE-2016-3152 | Information Exposure vulnerability in Barco Clickshare Csc-1 Firmware Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow remote attackers to obtain the root password by downloading and extracting the firmware image. | 5.0 |
2017-01-12 | CVE-2016-3151 | Path Traversal vulnerability in Barco products Directory traversal vulnerability in the wallpaper parsing functionality in Barco ClickShare CSC-1 devices with firmware before 01.09.03, CSM-1 devices with firmware before 01.06.02, and CSE-200 devices with firmware before 01.03.02 allows remote attackers to read /etc/shadow via unspecified vectors. | 5.0 |
2017-01-12 | CVE-2016-3150 | Cross-site Scripting vulnerability in Barco products Cross-site scripting (XSS) vulnerability in wallpaper.php in the Base Unit in Barco ClickShare CSC-1 devices with firmware before 01.09.03, CSM-1 devices with firmware before 01.06.02, and CSE-200 devices with firmware before 01.03.02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |