CVE-2022-26974 Information

Description

Barco Control Room Management Suite web application which is part of TransForm N before 3.14 is exposing a file upload mechanism. Lack of input sanitization in the upload mechanism leads to reflected XSS.

Reference

https://www.barco.com/en/support/transform-n-management-server https://www.barco.com/en/support/knowledge-base/KB12684