HomePentest-Tools.com Logo

Barco Control Room Management Suite <=2.9 Build 0275 - Local File Inclusion CVE-2022-26233

Severity
CVSSv3 Score
7.5
Vulnerability description

Barco Control Room Management through Suite 2.9 Build 0275 is vulnerable to local file inclusion that could allow attackers to access sensitive information and components. Requests must begin with the "GET /..\.." substring.

Risk description

The risk exists that a remote unauthenticated attacker could exploit this vulnerability to read sensitive information from arbitrary files located on the file system of the server.

Recommendation

Upgrade Barco Control Room Management Suite to a version higher than 2.9 Build 0275 to mitigate the vulnerability.

Codename
Not available
Detectable with
Network Scanner
Scan engine
Nuclei
Exploitable with Sniper
No
CVE Published
Apr 3, 2022
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available