CVE-2022-26973

2022-06-0111:34:48

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.6%

JSON

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. By tweaking the license file name, the returned error message exposes internal directory path details.

References

www.barco.com/en/support/knowledge-base/KB12678

www.barco.com/en/support/transform-n-management-server