cbcvebase.
CVE-2019-18827
published 2019-12-16

CVE-2019-18827: On Barco ClickShare Button R9861500D01 devices (before firmware version 1.9.0) JTAG access is disabled after ROM code execution. This means that JTAG access is…

PriorityP434medium5.9CVSS 3.1
AVNACHPRNUINSUCHINAN
EPSS
1.35%
68.1th percentile
On Barco ClickShare Button R9861500D01 devices (before firmware version 1.9.0) JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running code from ROM before handing control over to embedded firmware.

Affected

4 ranges
VendorProductVersion rangeFixed in
barcoclickshare_cs-100_firmware< 1.9.01.9.0
barcoclickshare_cse-200_+_firmware< 1.9.01.9.0
barcoclickshare_cse-200_firmware< 1.9.01.9.0
barcoclickshare_cse-800_firmware< 1.9.01.9.0

CVSS provenance

nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.