Barco Barco

  1. Vendors
  2. Barco

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Barco product.

RSS Feeds for Barco security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Barco products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Barco Sorted by Most Security Vulnerabilities since 2018

Barco Control Room Management Suite9 vulnerabilities

Barco Mirrorop Windows Sender2 vulnerabilities

Barco Wepresent Wipg 1000p Firmware1 vulnerability

By the Year

In 2026 there have been 0 vulnerabilities in Barco. Last year, in 2025 Barco had 1 security vulnerability published. Right now, Barco is on track to have less security vulnerabilities in 2026 than it did last year.

Year Vulnerabilities Average Score
2026 0 0.00
2025 1 0.00
2024 0 0.00
2023 0 0.00
2022 9 6.16
2021 2 8.30

It may take a day or so for new Barco vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Barco Security Vulnerabilities

CVE Date Vulnerability Products
CVE-2025-34103 Jul 15, 2025
Unauth Cmd Injection in WePresent WiPG-1000 /cgi-bin/rdfs.cgi <2.2.3.0 An unauthenticated command injection vulnerability exists in WePresent WiPG-1000 firmware versions prior to 2.2.3.0, due to improper input handling in the undocumented /cgi-bin/rdfs.cgi endpoint. The Client parameter is not sanitized before being passed to a system call, allowing an unauthenticated remote attacker to execute arbitrary commands as the web server user.
Wepresent Wipg 1000p Firmware
CVE-2022-26978 Jun 02, 2022
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /checklogin.jsp endpoint Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /checklogin.jsp endpoint. The os_username parameters is not correctly sanitized, leading to reflected XSS.
Control Room Management Suite
CVE-2022-26977 Jun 02, 2022
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. Lack of input sanitization of the upload mechanism is leads to stored XSS.
Control Room Management Suite
CVE-2022-26976 Jun 02, 2022
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. Lack of input sanitization in the upload mechanism is leads to reflected XSS.
Control Room Management Suite
CVE-2022-26975 Jun 02, 2022
Barco Control Room Management Suite web application Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing log files without authentication.
Control Room Management Suite
CVE-2022-26974 Jun 02, 2022
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a file upload mechanism Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a file upload mechanism. Lack of input sanitization in the upload mechanism leads to reflected XSS.
Control Room Management Suite
CVE-2022-26973 Jun 02, 2022
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. By tweaking the license file name, the returned error message exposes internal directory path details.
Control Room Management Suite
CVE-2022-26972 Jun 02, 2022
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /cgi-bin endpoint Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /cgi-bin endpoint. The URL parameters are not correctly sanitized, leading to reflected XSS.
Control Room Management Suite
CVE-2022-26971 Jun 02, 2022
Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. This upload can be executed without authentication.
Control Room Management Suite
CVE-2022-26233 Apr 03, 2022
Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to directory traversal Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to directory traversal, allowing attackers to access sensitive information and components. Requests must begin with the "GET /..\.." substring.
Control Room Management Suite
Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.