Design/Logic Flaw

2019-12-1714:15:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.3%

JSON

Barco ClickShare Button R9861500D01 devices before 1.9.0 have incorrect Credentials Management. The ClickShare Button implements encryption at rest which uses a one-time programmable (OTP) AES encryption key. This key is shared across all ClickShare Buttons of model R9861500D01.

CPENameOperatorVersion
clickshare_button_r9861500d01_firmwarelt1.9.0

CPE	Name	Operator	Version
	clickshare_button_r9861500d01_firmware	lt	1.9.0

References

labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare/

www.barco.com/en/clickshare/firmware-update