JTAG Access Vulnerability on Barco ClickShare Button Devices

JTAG Access Vulnerability on Barco ClickShare Button Devices

CVE-2019-18827 · MEDIUM Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

On Barco ClickShare Button R9861500D01 devices (before firmware version 1.9.0) JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running code from ROM before handing control over to embedded firmware.

Learn more about our Web Application Penetration Testing UK.