CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-28329

Barco wePresent WiPG-1600W firmware includes a hardcoded API account and password that is discoverable by inspecting the firmware image. A malicious actor could use this password to access authenticated, administrative functions in the API. Affected Version(s): 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.1%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2020-28329

Barco » Wepresent Wipg-1600w » Version: N/A

cpe:2.3:h:barco:wepresent_wipg-1600w:-
Barco » Wepresent Wipg-1600w Firmware » Version: 2.4.1.19

cpe:2.3:o:barco:wepresent_wipg-1600w_firmware:2.4.1.19
Barco » Wepresent Wipg-1600w Firmware » Version: 2.5.0.24

cpe:2.3:o:barco:wepresent_wipg-1600w_firmware:2.5.0.24
Barco » Wepresent Wipg-1600w Firmware » Version: 2.5.0.25

cpe:2.3:o:barco:wepresent_wipg-1600w_firmware:2.5.0.25
Barco » Wepresent Wipg-1600w Firmware » Version: 2.5.1.8

cpe:2.3:o:barco:wepresent_wipg-1600w_firmware:2.5.1.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-28329

Products

Pricing

Contact Us