Unrated severityNVD Advisory· Published Jun 1, 2022· Updated Aug 3, 2024
CVE-2022-26978
CVE-2022-26978
Description
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /checklogin.jsp endpoint. The os_username parameters is not correctly sanitized, leading to reflected XSS.
Affected products
2- Barco/Control Room Management Suitedescription
- Range: <3.14
Patches
Vulnerability mechanics
References
2- www.barco.com/en/support/knowledge-base/KB12686mitrex_refsource_MISC
- www.barco.com/en/support/transform-n-management-servermitrex_refsource_MISC
News mentions
0No linked articles in our index yet.