Vulnerabilities > Barco > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-06-02 CVE-2022-26971 Missing Authentication for Critical Function vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism.
network
low complexity
barco CWE-306
5.3
5.3
2022-06-02 CVE-2022-26972 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /cgi-bin endpoint.
network
low complexity
barco CWE-79
6.1
6.1
2022-06-02 CVE-2022-26973 Information Exposure Through an Error Message vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism.
network
low complexity
barco CWE-209
5.3
5.3
2022-06-02 CVE-2022-26974 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a file upload mechanism.
network
low complexity
barco CWE-79
6.1
6.1
2022-06-02 CVE-2022-26976 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism.
network
low complexity
barco CWE-79
5.4
5.4
2022-06-02 CVE-2022-26977 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism.
network
low complexity
barco CWE-79
6.1
6.1
2022-06-02 CVE-2022-26978 Cross-site Scripting vulnerability in Barco Control Room Management Suite
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /checklogin.jsp endpoint.
network
low complexity
barco CWE-79
6.1
6.1
2020-11-24 CVE-2020-28330 Insufficiently Protected Credentials vulnerability in Barco Wepresent Wipg-1600W Firmware 2.5.1.8
Barco wePresent WiPG-1600W devices have Unprotected Transport of Credentials.
network
low complexity
barco CWE-522
6.5
6.5
2019-12-17 CVE-2019-18833 Missing Encryption of Sensitive Data vulnerability in Barco Clickshare Button R9861500D01 Firmware
Barco ClickShare Button R9861500D01 devices before 1.9.0 allow Information exposure (issue 2 of 2)..
network
high complexity
barco CWE-311
5.9
5.9
2019-12-17 CVE-2019-18824 Insufficient Verification of Data Authenticity vulnerability in Barco Clickshare Button R9861500D01 Firmware
Barco ClickShare Button R9861500D01 devices before 1.10.0.13 have Missing Support for Integrity Check.
low complexity
barco CWE-345
6.6
6.6