Weak Root Password Vulnerability in Barco ClickShare Button Devices

Weak Root Password Vulnerability in Barco ClickShare Button Devices

CVE-2019-18828 · MEDIUM Severity

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Barco ClickShare Button R9861500D01 devices before 1.9.0 have Insufficiently Protected Credentials. The root account (present for access via debug interfaces, which are by default not enabled on production devices) of the embedded Linux on the ClickShare Button is using a weak password.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.