Vulnerabilities > Barco > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-16 | CVE-2019-18831 | Use of Hard-coded Credentials vulnerability in Barco products Barco ClickShare Button R9861500D01 devices before 1.9.0 allow Information Exposure. | 5.3 |
| 2019-12-16 | CVE-2019-18828 | Weak Password Requirements vulnerability in Barco products Barco ClickShare Button R9861500D01 devices before 1.9.0 have Insufficiently Protected Credentials. | 6.8 |
| 2019-12-16 | CVE-2019-18827 | Improper Authorization vulnerability in Barco products On Barco ClickShare Button R9861500D01 devices (before firmware version 1.9.0) JTAG access is disabled after ROM code execution. | 5.9 |
| 2017-10-30 | CVE-2017-12460 | Cross-site Scripting vulnerability in Barco products An issue was discovered in Barco ClickShare CSM-1 firmware before v1.7.0.3 and CSC-1 firmware before v1.10.0.10. | 5.4 |
| 2017-01-12 | CVE-2016-3150 | Cross-site Scripting vulnerability in Barco products Cross-site scripting (XSS) vulnerability in wallpaper.php in the Base Unit in Barco ClickShare CSC-1 devices with firmware before 01.09.03, CSM-1 devices with firmware before 01.06.02, and CSE-200 devices with firmware before 01.03.02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |