CVE-2019-18827
MEDIUMBarco ClickShare Button R9861500D01 <1.9.0 - Info Disclosure
Title source: llmDescription
On Barco ClickShare Button R9861500D01 devices (before firmware version 1.9.0) JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running code from ROM before handing control over to embedded firmware.
References (6)
Core 6
Core References
Product x_refsource_misc
https://www.barco.com/en/clickshare/firmware-update
Third Party Advisory x_refsource_misc
https://labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare/
Product, Vendor Advisory x_refsource_misc
https://www.barco.com/en/support/software/R33050069?majorVersion=01&minorVersion=09&patchVersion=01&buildVersion=007
Product, Vendor Advisory x_refsource_misc
https://www.barco.com/en/support/software/R33050125?majorVersion=01&minorVersion=09&patchVersion=01&buildVersion=007
Product, Vendor Advisory x_refsource_misc
https://www.barco.com/en/support/software/R33050095?majorVersion=01&minorVersion=09&patchVersion=01&buildVersion=007
Product, Vendor Advisory x_refsource_misc
https://www.barco.com/en/support/software/R33050070?majorVersion=01&minorVersion=09&patchVersion=01&buildVersion=007
Scores
CVSS v3
5.9
EPSS
0.0135
EPSS Percentile
68.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-285
CWE-362
Status
published
Products (4)
barco/clickshare_cs-100_firmware
< 1.9.0
barco/clickshare_cse-200\+_firmware
< 1.9.0
barco/clickshare_cse-200_firmware
< 1.9.0
barco/clickshare_cse-800_firmware
< 1.9.0
Published
Dec 16, 2019
Tracked Since
Feb 18, 2026