PT-2019-15685 · Barco · Barco Clickshare Button

Published

2019-12-17

Updated

2021-07-21

CVE-2019-18829

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Barco ClickShare Button R9861500D01 versions prior to 1.10.0.13

Description The issue concerns missing support for integrity checks in the Barco ClickShare Button. Specifically, the Clickshare For Windows.exe binary loads DLL files dynamically without verifying their integrity.

Recommendations For versions prior to 1.10.0.13, update to version 1.10.0.13 or later to resolve the issue.

Exploit

Fix

Insufficient Verification of Data Authenticity

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-345

Related Identifiers

CVE-2019-18829

Affected Products

Barco Clickshare Button

PT-2019-15685 · Barco · Barco Clickshare Button

CVE-2019-18829

Weakness Enumeration

Related Identifiers

Affected Products

References · 6