← Volver a CVEs
CVE-2019-18825
HIGH7.5
Descripcion
Barco ClickShare Huddle CS-100 devices before 1.9.0 and CSE-200 devices before 1.9.0 have incorrect Credentials Management. The ClickShare Base Unit implements encryption at rest using encryption keys which are shared across all ClickShare Base Units of models CS-100 & CSE-200.
Detalles CVE
Puntuacion CVSS v3.17.5
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado12/17/2019
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
barco:clickshare_cs-100_huddlebarco:clickshare_cs-100_huddle_firmwarebarco:clickshare_cse-200barco:clickshare_cse-200_firmware
Referencias
https://www.barco.com/en/clickshare/firmware-update(cve@mitre.org)
https://labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare/(af854a3a-2127-422b-91ae-364da2661108)
https://www.barco.com/en/clickshare/firmware-update(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.