Barco search

    Products
    Solutions
    Back

    Products & solutions

    Products
    1. Medical displays
      Back

      Products & solutions

      Medical displays
      1. All-in-one displays
      2. Breast imaging displays
      3. Clinical review displays
      4. Custom medical solutions
      5. Dental displays
      6. Digital pathology displays
      7. Healthcare software
      8. Medical display controllers
      9. Radiology displays
      10. Surgical displays
    2. Digital operating room
      Back

      Products & solutions

      Digital operating room
      1. Medical device management
      2. Surgical collaboration
    3. Services
      Back

      Products & solutions

      Services
      1. Enterprise services
      2. Entertainment services
      3. Healthcare services
    4. ClickShare
      Back

      Products & solutions

      ClickShare
      1. Video bars for wireless collaboration
      2. Wireless conferencing
      3. Wireless presentation
    5. Projection
      Back

      Products & solutions

      Projection
      1. Installation projectors
      2. Rental projectors
      3. Simulation projectors
    6. Image processing
      Back

      Products & solutions

      Image processing
      1. Event master
      2. Screen management
    7. Cinema systems
      Back

      Products & solutions

      Cinema systems
      1. Cinema projectors
      2. Home cinema projectors
      3. Laser light upgrade
      4. Media servers & audio
      5. Cinema screens
    8. Video walls
      Back

      Products & solutions

      Video walls
      1. Controllers
      2. LCD video walls
      3. LED video walls
      4. Rear-projection video walls
    9. Control room software
      Back

      Products & solutions

      Control room software
      1. Barco CTRL
      2. OpSpace
      3. TransForm N
    10. Immersive systems
      Back

      Products & solutions

      Immersive systems
      1. Canvas
      2. Caves
      3. Powerwalls
    Solutions
      1. 3D visualization
      2. Cinema
      3. Control rooms
      4. Home entertainment
      5. Live events
      6. Medical imaging & workflows
      7. Projection mapping
      8. Simulation & training solutions
      9. Television studio
      10. Themed entertainment
      11. Workplace
    Back

    Inspiration

      1. News & Insights
      2. Customer stories
      3. Events
    Back

    Contact

      1. Where to buy
      2. Office locator
      3. Contact us
    Back

    Support

      1. Support
      2. Knowledge base
      3. Training & certification
    Back

    About Barco

      1. Barco 90 years
      2. This is Barco
      3. Investor relations
      4. Jobs
      5. Press releases
      6. Sustainability
      7. Worldwide offices
      8. Trust center
      9. Corporate governance
      10. Experience Center
      11. Patents
    Back

    Partners

      1. Resellers & system integrators
      2. Alliance partners
      3. Consultants
      4. Suppliers
      5. Why become a partner?

    Authenticated remote code execution or Command injection vulnerability in Barco NDN-210/NDN-211

    Article number: [3417] - Legacy code: [11589]

    Applicable to

    Summary

    The NDN-210 and NDN-211 have a web administration panel which is made available over https. There is a command injection issue that will allow authenticated users to perform authenticated remote code execution.

    CVE: CVE-2020-17502, CVE-2020-17503, CVE-2020-17504

    Severity: Medium

    CVSS 3.1 Score: 6.8

    Source

    The issue was notified to Barco through the Barco’s Responsible Disclosure program by fellow security researchers with Federal Police of Sweden namely Kristoffer Blasiak and Ulf Frisk.

    Affected Products

    The following products running versions prior to the release of TFN 3.8 are affected.

    • TransForm NDN-210 Lite
    • TransForm NDN-210 Pro
    • TransForm NDN-211 Lite
    • TransForm NDN-211 Pro

    Solution

    The fix is available as part of the Barco’s TransformN (TFN) 3.8 Release. It is highly recommended to apply the fixes as part of this package. TFN stands for Barco’s visualization platform, consisting of display wall controller output nodes, input nodes, system and gateway nodes and the Control room Management software Suite (CMS). TFN helps control room professionals to collect all possible types of source data as well as to organize and transform this source data in the most efficient and transparent way to create visual information on display walls. Further details of the release package are available in the release notes here

    Properties

    Last updated Jun 14, 2022

    No solution found?

    Phone support

    Our helpdesk provides you with prompt phone support. A team of experienced support engineers is at your service for any professional assistance.

    Get support
    Phone support

    Our helpdesk provides you with prompt phone support. A team of experienced support engineers is at your service for any professional assistance.

    Get support

    No solution found?

    Phone support

    Our helpdesk provides you with prompt phone support. A team of experienced support engineers is at your service for any professional assistance.

    Get support
    Phone support

    Our helpdesk provides you with prompt phone support. A team of experienced support engineers is at your service for any professional assistance.

    Get support