Vulnerability Description
Barco wePresent WiPG-1600W devices have Improper Access Control. Affected Version(s): 2.5.1.8. The Barco wePresent WiPG-1600W device has an SSH daemon included in the firmware image. By default, the SSH daemon is disabled and does not start at system boot. The system initialization scripts read a device configuration file variable to see if the SSH daemon should be started. The web interface does not provide a visible capability to alter this configuration file variable. However, a malicious actor can include this variable in a POST such that the SSH daemon will be started when the device boots.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Barco | Wepresent Wipg-1600W Firmware | 2.5.1.8 |
| Barco | Wepresent Wipg-1600W | - |
References
- http://packetstormsecurity.com/files/160162/Barco-wePresent-Undocumented-SSH-IntThird Party AdvisoryVDB Entry
- https://korelogic.com/Resources/Advisories/KL-001-2020-007.txtThird Party Advisory
- http://packetstormsecurity.com/files/160162/Barco-wePresent-Undocumented-SSH-IntThird Party AdvisoryVDB Entry
- https://korelogic.com/Resources/Advisories/KL-001-2020-007.txtThird Party Advisory
FAQ
What is CVE-2020-28331?
CVE-2020-28331 is a vulnerability with a CVSS score of 7.5 (HIGH). Barco wePresent WiPG-1600W devices have Improper Access Control. Affected Version(s): 2.5.1.8. The Barco wePresent WiPG-1600W device has an SSH daemon included in the firmware image. By default, the S...
How severe is CVE-2020-28331?
CVE-2020-28331 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-28331?
Check the references section above for vendor advisories and patch information. Affected products include: Barco Wepresent Wipg-1600W Firmware, Barco Wepresent Wipg-1600W.