CVE-2022-26976 Information

Description

Barco Control Room Management Suite web application which is part of TransForm N before 3.14 is exposing a license file upload mechanism. Lack of input sanitization in the upload mechanism is leads to reflected XSS.

Reference

https://www.barco.com/en/support/transform-n-management-server https://www.barco.com/en/support/knowledge-base/KB12682