PT-2019-15686 · Barco · Barco Clickshare Button

Publicado

2019-12-16

Atualizado

2019-12-23

CVE-2019-18830

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Barco ClickShare Button R9861500D01 versions prior to 1.9.0

Description The issue affects the dongle bridge program, which is used to expose the functionalities of the ClickShare Button to a USB host. This program is vulnerable to OS command injection, potentially leading to code execution on the ClickShare Button with the privileges of the user nobody.

Recommendations For Barco ClickShare Button R9861500D01 versions prior to 1.9.0, update to version 1.9.0 or later to resolve the issue.

Correção

OS Command Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-78

Identificadores relacionados

CVE-2019-18830

Produtos afetados

Barco Clickshare Button

PT-2019-15686 · Barco · Barco Clickshare Button

CVE-2019-18830

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8