CVE-2016-3152
published 2017-01-12CVE-2016-3152: Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow remote attackers to obtain the root password by downloading and extracting the firmware…
PriorityP358critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
2.77%
84.5th percentile
Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow remote attackers to obtain the root password by downloading and extracting the firmware image.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| barco | clickshare_csc-1_firmware | <= 01.09.02.03 | — |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Barco ClickShare CSC-1/ClickShare CSM-1 Firmware Update information disclosure (BID-94326)
vuldb·2026-05-13
CVE-2016-3152 Barco ClickShare CSC-1/ClickShare CSM-1 Firmware Update information disclosure (BID-94326)
A vulnerability categorized as critical has been discovered in Barco ClickShare CSC-1 and ClickShare CSM-1. This affects an unknown part of the component Firmware Update Handler. The manipulation results in information disclosure.
This vulnerability is reported as CVE-2016-3152. The attack can be launched remotely. No exploit exists.
It is advisable to upgrade the affected component.
GHSA
GHSA-2wvv-6r6q-wwcj: Barco ClickShare CSC-1 devices with firmware before 01
ghsa_unreviewed·2022-05-14
CVE-2016-3152 [CRITICAL] CWE-200 GHSA-2wvv-6r6q-wwcj: Barco ClickShare CSC-1 devices with firmware before 01
Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow remote attackers to obtain the root password by downloading and extracting the firmware image.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://packetstormsecurity.com/files/139713/Barco-ClickShare-XSS-Remote-Code-Execution-Path-Traversal.htmlhttp://www.securityfocus.com/archive/1/539754/100/0/threadedhttp://www.securityfocus.com/bid/94326http://packetstormsecurity.com/files/139713/Barco-ClickShare-XSS-Remote-Code-Execution-Path-Traversal.htmlhttp://www.securityfocus.com/archive/1/539754/100/0/threadedhttp://www.securityfocus.com/bid/94326
2017-01-12
Published