PT-2017-8349 · Barco · Barco Clickshare Csc-1+1
Published
2017-01-12
·
Updated
2026-05-13
·
CVE-2016-3150
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Barco ClickShare CSC-1 devices with firmware prior to 01.09.03
Barco ClickShare CSM-1 devices with firmware prior to 01.06.02
Barco ClickShare CSE-200 devices with firmware prior to 01.03.02
Description
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. This affects the wallpaper.php file in the Base Unit of the devices.
Recommendations
For Barco ClickShare CSC-1 devices with firmware prior to 01.09.03, update the firmware to version 01.09.03 or later.
For Barco ClickShare CSM-1 devices with firmware prior to 01.06.02, update the firmware to version 01.06.02 or later.
For Barco ClickShare CSE-200 devices with firmware prior to 01.03.02, update the firmware to version 01.03.02 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Barco Clickshare Csc-1
Barco Clickshare Cse-200