Lucene search
LogitechCVELIST:CVE-2024-8011HistoryAug 25, 2024 - 11:44 a.m.
CVE-2024-8011
2024-08-2511:44:45
CWE-863
Logitech
www.cve.org
5
logitech options+
macos
local attacker
dynamic library
camera permissions
CVSS4
2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/SC:L/VI:L/SI:L/VA:L/SA:L
EPSS
0
Percentile
9.5%
Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within Options+ runtime and abuse permissions granted by the user to Options+ such as Camera.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"MacOS"
],
"product": "Options+",
"vendor": "Logitech",
"versions": [
{
"status": "unaffected",
"version": "1.72.564177",
"versionType": "custom"
},
{
"lessThanOrEqual": "1.70.551909",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]References
Related
nvd
nvd
CVE-2024-8011
2024-08-25 12:15:03
cve
cve
CVE-2024-8011
2024-08-25 12:15:03
vulnrichment
vulnrichment
CVE-2024-8011
2024-08-25 11:44:45
CVSS4
2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/SC:L/VI:L/SI:L/VA:L/SA:L
EPSS
0
Percentile
9.5%
Related for CVELIST:CVE-2024-8011