ClickShare implements hotfix firmware update
5 min read
ClickShare has released a hotfix firmware update (version 2.21.1) to address a security vulnerability recently discovered during a penetration test. We strongly encourage all customers to update their devices.
At ClickShare, your security is our top priority. Security is not just part of our development process—it’s embedded into everything we do.
We apply security best practices aligned with standards like ETSI EN 303 645 (Cyber Security for Consumer IoT) and ISO 27001, ensuring you benefit from the highest levels of security and privacy.
ClickShare undergoes frequent penetration testing by both internal and external parties. Any findings are prioritized based on a risk assessment, in line with our incident response management process.
During such a penetration test, a vulnerability was discovered. If exploited, this issue could allow an administrator or someone with physical access to execute commands on the device.
This vulnerability, identified as CVE-2024-53919, impacts the Base Units of the following devices:
- ClickShare C-5 and C-10
- ClickShare CX-20 and CX-30
- ClickShare Bar Pro and Core
The ClickShare Buttons or other models such as CS(E), CX-50 and CX-50 2nd Gen, are not affected.
Our response: firmware update 2.21.1
To address this issue, we developed a security patch: firmware version 2.21.1. We strongly encourage all customers to update their devices as soon as possible. This update is critical, and downgrading below version 2.21.1 will not be possible.
If your firmware updates are set to automatic, you do not have to take additional actions.
If you´d like to configure automatic firmware updates on your ClickShare Base Unit, check out our article here. Setting automatic updates ensures your devices stay secure, efficient, and equipped with the latest features without any manual effort.
This update reflects our ongoing commitment to providing reliable and secure solutions for your meeting spaces. We’re dedicated to continuously improving our products to ensure they meet the highest standards of safety, security and performance.
How to update your devices?
Update via XMS Cloud
If you´d like to choose when updates are executed or need to schedule them in bulk, access XMS Cloud. There you can also activate automatic updates or receive notifications whenever new firmware versions are available.
Manual update
To manually update the firmware on a single ClickShare Base Unit, you can either upload it through the ClickShare Configurator or use a USB stick for the update. Read the full instructions here.
If you are unable to upgrade your devices or have additional questions, please contact www.barco.com/support.