Lucene search
K

156 matches found

NVD
NVD
added 2017/10/30 2:29 p.m.19 views

CVE-2017-9377

A command injection was identified on Barco ClickShare Base Unit devices with CSM-1 firmware before 1.7.0.3 and CSC-1 firmware before 1.10.0.10. An attacker with access to the product's web API can exploit this vulnerability to completely compromise the vulnerable device...

9CVSS8.9AI score0.04345EPSS
Exploits0References4
Prion
Prion
added 2017/10/30 2:29 p.m.14 views

Command injection

A command injection was identified on Barco ClickShare Base Unit devices with CSM-1 firmware before 1.7.0.3 and CSC-1 firmware before 1.10.0.10. An attacker with access to the product's web API can exploit this vulnerability to completely compromise the vulnerable device...

9CVSS7.7AI score0.04345EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2017/10/30 2:29 p.m.2 views

CVE-2017-12460

An issue was discovered in Barco ClickShare CSM-1 firmware before v1.7.0.3 and CSC-1 firmware before v1.10.0.10. An authenticated user can manage the wallpaper collection in the webUI to be shown as background on the ClickShare product. By uploading a wallpaper with a specially crafted name, an...

5.4CVSS5.8AI score0.00641EPSS
Exploits0References3
OSV
OSV
added 2017/10/30 2:29 p.m.4 views

CVE-2017-9377

A command injection was identified on Barco ClickShare Base Unit devices with CSM-1 firmware before 1.7.0.3 and CSC-1 firmware before 1.10.0.10. An attacker with access to the product's web API can exploit this vulnerability to completely compromise the vulnerable device...

8.8CVSS5.8AI score0.04345EPSS
Exploits0References4
Cvelist
Cvelist
added 2017/10/30 2:0 p.m.23 views

CVE-2017-9377

A command injection was identified on Barco ClickShare Base Unit devices with CSM-1 firmware before 1.7.0.3 and CSC-1 firmware before 1.10.0.10. An attacker with access to the product's web API can exploit this vulnerability to completely compromise the vulnerable device...

9AI score0.04345EPSS
Exploits0References4
CVE
CVE
added 2017/10/30 2:0 p.m.45 views

CVE-2017-9377

Barco ClickShare Base Unit devices (CSM-1 firmware before 1.7.0.3; CSC-1 firmware before 1.10.0.10) are affected by CVE-2017-9377. A command injection vulnerability exists that an attacker with access to the product’s web API can exploit to completely compromise the affected device. The available...

9CVSS8.8AI score0.04345EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2017/10/30 2:0 p.m.42 views

CVE-2017-12460

Barco ClickShare CSM-1 firmware prior to 1.7.0.3 and CSC-1 firmware prior to 1.10.0.10 are affected. An authenticated user can manage the wallpaper collection via the webUI and, by uploading a wallpaper with a specially crafted name, trigger HTML injection due to non-neutralized output. Impact is...

5.4CVSS5.5AI score0.00641EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2017/01/12 11:59 p.m.11 views

Code injection

Barco ClickShare CSC-1 devices with firmware before 01.09.03 and CSM-1 devices with firmware before 01.06.02 allow remote attackers to execute arbitrary code via unspecified vectors...

10CVSS8.5AI score0.07798EPSS
Exploits1References3Affected Software2
NVD
NVD
added 2017/01/12 11:59 p.m.18 views

CVE-2016-3149

Barco ClickShare CSC-1 devices with firmware before 01.09.03 and CSM-1 devices with firmware before 01.06.02 allow remote attackers to execute arbitrary code via unspecified vectors...

10CVSS9.7AI score0.07798EPSS
Exploits1References3
Prion
Prion
added 2017/01/12 11:59 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in wallpaper.php in the Base Unit in Barco ClickShare CSC-1 devices with firmware before 01.09.03, CSM-1 devices with firmware before 01.06.02, and CSE-200 devices with firmware before 01.03.02 allows remote attackers to inject arbitrary web script or HTML v...

4.3CVSS6.3AI score0.01271EPSS
Exploits1References3Affected Software2
OSV
OSV
added 2017/01/12 11:59 p.m.3 views

CVE-2016-3152

Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow remote attackers to obtain the root password by downloading and extracting the firmware image...

9.8CVSS5.8AI score0.02797EPSS
Exploits1References3
Prion
Prion
added 2017/01/12 11:59 p.m.13 views

Default credentials

Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow remote attackers to obtain the root password by downloading and extracting the firmware image...

5CVSS7.6AI score0.02797EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2017/01/12 11:59 p.m.2 views

CVE-2016-3151

Directory traversal vulnerability in the wallpaper parsing functionality in Barco ClickShare CSC-1 devices with firmware before 01.09.03, CSM-1 devices with firmware before 01.06.02, and CSE-200 devices with firmware before 01.03.02 allows remote attackers to read /etc/shadow via unspecified...

7.5CVSS5.8AI score0.04311EPSS
Exploits1References3
NVD
NVD
added 2017/01/12 11:59 p.m.18 views

CVE-2016-3152

Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow remote attackers to obtain the root password by downloading and extracting the firmware image...

9.8CVSS9.6AI score0.02797EPSS
Exploits1References3
NVD
NVD
added 2017/01/12 11:59 p.m.17 views

CVE-2016-3151

Directory traversal vulnerability in the wallpaper parsing functionality in Barco ClickShare CSC-1 devices with firmware before 01.09.03, CSM-1 devices with firmware before 01.06.02, and CSE-200 devices with firmware before 01.03.02 allows remote attackers to read /etc/shadow via unspecified...

7.5CVSS7.4AI score0.04311EPSS
Exploits1References3
OSV
OSV
added 2017/01/12 11:59 p.m.4 views

CVE-2016-3150

Cross-site scripting XSS vulnerability in wallpaper.php in the Base Unit in Barco ClickShare CSC-1 devices with firmware before 01.09.03, CSM-1 devices with firmware before 01.06.02, and CSE-200 devices with firmware before 01.03.02 allows remote attackers to inject arbitrary web script or HTML v...

6.1CVSS5.9AI score0.01271EPSS
Exploits1References3
NVD
NVD
added 2017/01/12 11:59 p.m.20 views

CVE-2016-3150

Cross-site scripting XSS vulnerability in wallpaper.php in the Base Unit in Barco ClickShare CSC-1 devices with firmware before 01.09.03, CSM-1 devices with firmware before 01.06.02, and CSE-200 devices with firmware before 01.03.02 allows remote attackers to inject arbitrary web script or HTML v...

6.1CVSS6AI score0.01271EPSS
Exploits1References3
OSV
OSV
added 2017/01/12 11:59 p.m.5 views

CVE-2016-3149

Barco ClickShare CSC-1 devices with firmware before 01.09.03 and CSM-1 devices with firmware before 01.06.02 allow remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS6.1AI score0.07798EPSS
Exploits1References3
CVE
CVE
added 2017/01/12 11:0 p.m.49 views

CVE-2016-3149

Barco ClickShare CSC-1 devices with firmware before 01.09.03 and CSM-1 devices with firmware before 01.06.02 are affected by a remote code execution vulnerability. The gap allows remote attackers to execute arbitrary code via unspecified vectors on affected devices exposed to a network. The infor...

10CVSS9.6AI score0.07798EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2017/01/12 11:0 p.m.22 views

CVE-2016-3149

Barco ClickShare CSC-1 devices with firmware before 01.09.03 and CSM-1 devices with firmware before 01.06.02 allow remote attackers to execute arbitrary code via unspecified vectors...

9.8AI score0.07798EPSS
Exploits1References3
Rows per page
Query Builder