CVE-2019-18824
MEDIUMBarco ClickShare Button R9861500D01 <1.10.0.13 - Info Disclosure
Title source: llmDescription
Barco ClickShare Button R9861500D01 devices before 1.10.0.13 have Missing Support for Integrity Check. The ClickShare Button does not verify the integrity of the mutable content on the UBIFS partition before being used.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_misc
https://www.barco.com/en/clickshare/firmware-update
Exploit, Third Party Advisory x_refsource_misc
https://labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare/
Vendor Advisory x_refsource_confirm
https://www.barco.com/en/clickshare/support/software/R33050070?majorVersion=01&minorVersion=10&patchVersion=00&buildVersion=013
Vendor Advisory x_refsource_confirm
https://www.barco.com/en/clickshare/support/software/R33050069?majorVersion=01&minorVersion=10&patchVersion=00&buildVersion=013
Scores
CVSS v3
6.6
EPSS
0.0034
EPSS Percentile
25.2%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-345
Status
published
Products (1)
barco/clickshare_button_r9861500d01_firmware
< 1.10.0.13
Published
Dec 17, 2019
Tracked Since
Feb 18, 2026