Barco wePresent WiPG-1600W Firmware 2.5.0.24
Approved changes feed: RSS · Atom
cpe:2.3:o:barco:wepresent_wipg-1600w_firmware:2.5.0.24:*:*:*:*:*:*:*
part: o version: 2.5.0.24 update: *
| Vendor | Barco (3c3a5404-c880-50a8-8ef3-15e93251f6e5) |
|---|---|
| Product | Wepresent Wipg 1600W Firmware (bc0685d1-2ecc-56e3-b216-8dfd6cd35591) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-28334 |
vulnerable | 2026-06-03 14:42:19.300877 |
Details available
Barco wePresent WiPG-1600W devices use Hard-coded Credentials (issue 2 of 2). Affected Version(s): 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19. The Barco wePresent WiPG-1600W device has a hardcoded root password hash included in the firmware image. Exploiting CVE-2020-28329, CVE-2020-28330 and CVE-2020-28331 could potentially be used in a simple and automated exploit chain to go from unauthenticated remote attacker to root shell.
Published: 2020-11-24T18:17:34.000Z
Updated: 2024-08-04T16:33:58.163Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-28329 |
vulnerable | 2026-06-03 14:42:19.297395 |
Details available
Barco wePresent WiPG-1600W firmware includes a hardcoded API account and password that is discoverable by inspecting the firmware image. A malicious actor could use this password to access authenticated, administrative functions in the API. Affected Version(s): 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19.
Published: 2020-11-24T19:09:18.000Z
Updated: 2024-08-04T16:33:58.445Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.