What is CVE-2019-18830?

CVE-2019-18830 is a vulnerability that allows OS Command Injection in Barco ClickShare Button R9861500D01 devices before version 1.9.0.

How severe is CVE-2019-18830?

CVE-2019-18830 has a severity rating of 9.8 (Critical).

What software versions are affected by CVE-2019-18830?

Barco ClickShare CS-100 Firmware up to version 1.9.0 and Barco ClickShare CSE-200 Firmware up to version 1.9.0 are affected by CVE-2019-18830.

How can I fix CVE-2019-18830?

To fix CVE-2019-18830, update your Barco ClickShare Button R9861500D01 devices to version 1.9.0 or higher.

Where can I find more information about CVE-2019-18830?

You can find more information about CVE-2019-18830 at the following references: [https://labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare/](https://labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare/), [https://www.barco.com/en/clickshare/firmware-update](https://www.barco.com/en/clickshare/firmware-update), [https://www.barco.com/en/support/software/R33050069?majorVersion=01&minorVersion=09&patchVersion=01&buildVersion=007](https://www.barco.com/en/support/software/R33050069?majorVersion=01&minorVersion=09&patchVersion=01&buildVersion=007).

Vulnerability/
CVE-2019-18830

critical

CWE

78 77

16/12/2019

5/8/2024

CVE-2019-18830: OS Command Injection

First published: Mon Dec 16 2019(Updated: )

Barco ClickShare Button R9861500D01 devices before 1.9.0 allow OS Command Injection. The embedded 'dongle_bridge' program used to expose the functionalities of the ClickShare Button to a USB host, is vulnerable to OS command injection vulnerabilities. These vulnerabilities could lead to code execution on the ClickShare Button with the privileges of the user 'nobody'.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Barco Clickshare Cs-100 Firmware	<1.9.0
Barco Clickshare Cs-100
Barco Clickshare Cse-200 Firmware	<1.9.0
Barco ClickShare CSE-200
Barco Clickshare Cse-200\+ Firmware	<1.9.0
Barco Clickshare Cse-200\+
Barco Clickshare Cse-800 Firmware	<1.9.0
Barco Clickshare Cse-800

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2019-18830?
CVE-2019-18830 is a vulnerability that allows OS Command Injection in Barco ClickShare Button R9861500D01 devices before version 1.9.0.
How severe is CVE-2019-18830?
CVE-2019-18830 has a severity rating of 9.8 (Critical).
What software versions are affected by CVE-2019-18830?
Barco ClickShare CS-100 Firmware up to version 1.9.0 and Barco ClickShare CSE-200 Firmware up to version 1.9.0 are affected by CVE-2019-18830.
How can I fix CVE-2019-18830?
To fix CVE-2019-18830, update your Barco ClickShare Button R9861500D01 devices to version 1.9.0 or higher.
Where can I find more information about CVE-2019-18830?
You can find more information about CVE-2019-18830 at the following references: [https://labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare/](https://labs.f-secure.com/advisories/multiple-vulnerabilities-in-barco-clickshare/), [https://www.barco.com/en/clickshare/firmware-update](https://www.barco.com/en/clickshare/firmware-update), [https://www.barco.com/en/support/software/R33050069?majorVersion=01&minorVersion=09&patchVersion=01&buildVersion=007](https://www.barco.com/en/support/software/R33050069?majorVersion=01&minorVersion=09&patchVersion=01&buildVersion=007).

collector/nvd-index
agent/references
agent/weakness
agent/author
agent/severity
agent/type
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/tags
agent/softwarecombine
collector/mitre-cve
source/MITRE
vendor/barco
canonical/barco clickshare cs-100 firmware
canonical/barco clickshare cs-100
canonical/barco clickshare cse-200 firmware
canonical/barco clickshare cse-200
canonical/barco clickshare cse-200\+ firmware
canonical/barco clickshare cse-200\+
canonical/barco clickshare cse-800 firmware
canonical/barco clickshare cse-800