Barco ClickShare Button R9861500D01 devices before 1.9.0 have incorrect Credentials Management. The ClickShare Button implements encryption at rest which uses a one-time programmable (OTP) AES encryption key. This key is shared across all ClickShare Buttons of model R9861500D01.
References
Link | Resource |
---|---|
https://labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare/ | Exploit Third Party Advisory |
https://www.barco.com/en/clickshare/firmware-update | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2019-12-17 06:15
Updated : 2021-07-21 04:39
NVD link : CVE-2019-18832
Mitre link : CVE-2019-18832
JSON object : View
CWE
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
Products Affected
barco
- clickshare_button_r9861500d01_firmware
- clickshare_button_r9861500d01