PT-2019-15685 · Barco · Barco Clickshare Button

Publicado

2019-12-17

·

Atualizado

2021-07-21

·

CVE-2019-18829

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Barco ClickShare Button R9861500D01 versions prior to 1.10.0.13
Description The issue concerns missing support for integrity checks in the Barco ClickShare Button. Specifically, the Clickshare For Windows.exe binary loads DLL files dynamically without verifying their integrity.
Recommendations For versions prior to 1.10.0.13, update to version 1.10.0.13 or later to resolve the issue.

Exploit

Correção

Insufficient Verification of Data Authenticity

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-345

Identificadores relacionados

CVE-2019-18829

Produtos afetados

Barco Clickshare Button