These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2016-3152 is a critical information-disclosure issue in Barco ClickShare CSC-1 firmware before 01.09.03. According to the NVD description, a remote attacker can obtain the root password by downloading and extracting the firmware image. Because the issue requires no privileges and no user interaction, the exposure is high-risk for any deployed affected device.
CVE-2016-3151 is a high-severity directory traversal issue in Barco ClickShare wallpaper parsing. According to the CVE record, remote attackers could read sensitive local files such as /etc/shadow on affected devices running firmware older than the listed fixed versions. The issue was published by CVE/NVD on 2017-01-12 and is mapped to CWE-22.
CVE-2016-3150 is a cross-site scripting (XSS) issue in wallpaper.php in the Base Unit of certain Barco ClickShare devices. The CVE description says remote attackers can inject arbitrary web script or HTML via unspecified vectors. The record is scored CVSS 6.1 (medium) with network attack vector, low complexity, no privileges required, user interaction required, and changed scope.