2019-12-16 16:19:45
mitre
PUBLISHED
Barco ClickShare Button R9861500D01 devices before 1.9.0 allow OS Command Injection. The embedded dongle_bridge program used to expose the functionalities of the ClickShare Button to a USB host, is vulnerable to OS command injection vulnerabilities. These vulnerabilities could lead to code execution on the ClickShare Button with the privileges of the user nobody.