Known Vulnerabilities for products from Barco
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Barco".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Barco can be found at device.report : Barco
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-38142 | Barco MirrorOp Windows Sender before 2.5.3.65 uses cleartext HTTP and thus allows rogue software upgrades. An attacker on the... | 8.8 - HIGH | 2021-09-07 | 2022-07-12 |
| CVE-2021-35482 | An issue was discovered in Barco MirrorOp Windows Sender before 2.5.4.70. An attacker in the local network is able to achieve... | 7.8 - HIGH | 2021-07-21 | 2021-07-30 |
| CVE-2020-28334 | Barco wePresent WiPG-1600W devices use Hard-coded Credentials (issue 2 of 2). Affected Version(s): 2.5.1.8, 2.5.0.25, 2.5.0.2... | 9.8 - CRITICAL | 2020-11-24 | 2020-12-03 |
| CVE-2020-28333 | Barco wePresent WiPG-1600W devices allow Authentication Bypass. Affected Version(s): 2.5.1.8. The Barco wePresent WiPG-1600W ... | 9.8 - CRITICAL | 2020-11-24 | 2021-07-21 |
| CVE-2020-28332 | Barco wePresent WiPG-1600W devices download code without an Integrity Check. Affected Version(s): 2.5.1.8, 2.5.0.25, 2.5.0.24... | 9.8 - CRITICAL | 2020-11-24 | 2020-12-03 |
| CVE-2020-28331 | Barco wePresent WiPG-1600W devices have Improper Access Control. Affected Version(s): 2.5.1.8. The Barco wePresent WiPG-1600W... | 7.5 - HIGH | 2020-11-24 | 2022-07-12 |
| CVE-2020-28330 | Barco wePresent WiPG-1600W devices have Unprotected Transport of Credentials. Affected Version(s): 2.5.1.8. An attacker armed... | 6.5 - MEDIUM | 2020-11-24 | 2020-12-03 |
| CVE-2020-28329 | Barco wePresent WiPG-1600W firmware includes a hardcoded API account and password that is discoverable by inspecting the firm... | 9.8 - CRITICAL | 2020-11-24 | 2020-12-04 |
| CVE-2020-17504 | The NDN-210 has a web administration panel which is made available over https. There is a command injection issue that will a... | 7.2 - HIGH | 2021-01-08 | 2021-01-14 |
| CVE-2020-17503 | The NDN-210 has a web administration panel which is made available over https. There is a command injection issue that will a... | 7.2 - HIGH | 2021-01-08 | 2021-01-14 |
| CVE-2020-17502 | Barco TransForm N before 3.8 allows Command Injection (issue 2 of 4). The NDN-210 has a web administration panel which is mad... | 7.2 - HIGH | 2021-01-08 | 2021-01-13 |
| CVE-2020-17500 | Barco TransForm NDN-210 Lite, NDN-210 Pro, NDN-211 Lite, and NDN-211 Pro before 3.8 allows Command Injection (issue 1 of 4). ... | 9.8 - CRITICAL | 2021-01-07 | 2021-01-13 |
| CVE-2019-18833 | Barco ClickShare Button R9861500D01 devices before 1.9.0 allow Information exposure (issue 2 of 2).. The encryption key of th... | 5.9 - MEDIUM | 2019-12-17 | 2019-12-26 |
| CVE-2019-18832 | Barco ClickShare Button R9861500D01 devices before 1.9.0 have incorrect Credentials Management. The ClickShare Button impleme... | 8.1 - HIGH | 2019-12-17 | 2021-07-21 |
| CVE-2019-18831 | Barco ClickShare Button R9861500D01 devices before 1.9.0 allow Information Exposure. The encrypted ClickShare Button firmware... | 5.3 - MEDIUM | 2019-12-16 | 2020-08-24 |
| CVE-2019-18830 | Barco ClickShare Button R9861500D01 devices before 1.9.0 allow OS Command Injection. The embedded 'dongle_bridge' program use... | 9.8 - CRITICAL | 2019-12-16 | 2019-12-23 |
| CVE-2019-18829 | Barco ClickShare Button R9861500D01 devices before 1.10.0.13 have Missing Support for Integrity Check. The Barco signed 'Clic... | 7.8 - HIGH | 2019-12-17 | 2021-07-21 |
| CVE-2019-18828 | Barco ClickShare Button R9861500D01 devices before 1.9.0 have Insufficiently Protected Credentials. The root account (present... | 6.8 - MEDIUM | 2019-12-16 | 2020-08-24 |
| CVE-2019-18827 | On Barco ClickShare Button R9861500D01 devices (before firmware version 1.9.0) JTAG access is disabled after ROM code executi... | 5.9 - MEDIUM | 2019-12-16 | 2021-07-21 |
| CVE-2019-18826 | Barco ClickShare Button R9861500D01 devices before 1.9.0 have Improper Following of a Certificate's Chain of Trust. The embed... | 9.8 - CRITICAL | 2019-12-16 | 2019-12-27 |
Known software with vulnerabilities from Barco
| Type | Vendor | Product | Version |
|---|---|---|---|
| Operating System | Barco | Clickshare Button R9861500d01 Firmware | - |
| Operating System | Barco | Clickshare Cs-100 Firmware | - |
| Operating System | Barco | Clickshare Cse-200 Firmware | - |
| Hardware | Barco | Clickshare Cse-200 | - |
| Operating System | Barco | Clickshare Cse-200 Firmware | - |
| Hardware | Barco | Clickshare Cse-800 | - |
| Operating System | Barco | Clickshare Cse-800 Firmware | - |
| Operating System | Barco | Transform N | - |
| Operating System | Barco | Wepresent Wipg-1600w Firmware | 2.5.0.24 |