19 matches found
EUVD-2021-8059
Malicious code in bioql PyPI...
CVE-2021-20642
Improper check or handling of exceptional conditions in LOGITEC LAN-W300N/RS allows a remote attacker to cause a denial-of-service DoS condition by sending a specially crafted URL...
CVE-2023-32626
Hidden functionality vulnerability in LAN-W300N/RS all versions, and LAN-W300N/PR5 all versions allows an unauthenticated attacker to log in to the product's certain management console and execute arbitrary OS commands...
Design/Logic Flaw
Hidden functionality vulnerability in LAN-W300N/RS all versions, and LAN-W300N/PR5 all versions allows an unauthenticated attacker to log in to the product's certain management console and execute arbitrary OS commands...
CVE-2023-32626
Hidden functionality vulnerability in LAN-W300N/RS all versions, and LAN-W300N/PR5 all versions allows an unauthenticated attacker to log in to the product's certain management console and execute arbitrary OS commands...
CVE-2023-32626
Hidden functionality vulnerability in LAN-W300N/RS all versions, and LAN-W300N/PR5 all versions allows an unauthenticated attacker to log in to the product's certain management console and execute arbitrary OS commands...
PT-2023-23922 · Unknown · Lan-W300N/Pr5 +1
Name of the Vulnerable Software and Affected Versions: LAN-W300N/RS all versions LAN-W300N/PR5 all versions Description: A hidden functionality vulnerability allows an unauthenticated attacker to log in to the product's certain management console and execute arbitrary OS commands. Recommendations...
Logitec LAN Security Vulnerability
Logitec LAN is a series of routers from Logitech Switzerland. A security vulnerability exists in the Logitec LAN-W300N/PR5 and LAN-W300N/RS, which originates from the ability of an unauthenticated attacker to log in to certain management consoles of the product and execute arbitrary operating...
CVE-2021-20641
Cross-site request forgery CSRF vulnerability in LOGITEC LAN-W300N/RS allows remote attackers to hijack the authentication of administrators via a specially crafted URL. As a result, unintended operations to the device such as changes of the device settings may be conducted...
CVE-2021-20642
Improper check or handling of exceptional conditions in LOGITEC LAN-W300N/RS allows a remote attacker to cause a denial-of-service DoS condition by sending a specially crafted URL...
Input validation
Improper check or handling of exceptional conditions in LOGITEC LAN-W300N/RS allows a remote attacker to cause a denial-of-service DoS condition by sending a specially crafted URL...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in LOGITEC LAN-W300N/RS allows remote attackers to hijack the authentication of administrators via a specially crafted URL. As a result, unintended operations to the device such as changes of the device settings may be conducted...
CVE-2021-20641
Cross-site request forgery CSRF vulnerability in LOGITEC LAN-W300N/RS allows remote attackers to hijack the authentication of administrators via a specially crafted URL. As a result, unintended operations to the device such as changes of the device settings may be conducted...
CVE-2021-20642
Improper check or handling of exceptional conditions in LOGITEC LAN-W300N/RS allows a remote attacker to cause a denial-of-service DoS condition by sending a specially crafted URL...
CVE-2021-20641
CVE-2021-20641 is a CSRF vulnerability in LOGITEC LAN-W300N/RS that lets an attacker spoof an admin session and perform unintended device changes via a crafted URL. Public sources describe the impact as affecting administrative web access, enabling authentication hijacking and potentially changin...
CVE-2021-20642
CVE-2021-20642 concerns LOGITEC devices (notably LAN-W300N/RS). The root cause is an improper check/handling of exceptional conditions in the device firmware, enabling a remote attacker to trigger a denial-of-service by sending a specially crafted URL. Affected product set includes LAN-W300N/RS a...
JVN#96783542: Multiple vulnerabilities in multiple LOGITEC products
Multiple products provided by LOGITEC CORPORATION contain multiple vulnerabilities listed below. Improper restriction of excessive authentication attempts CWE-307 - CVE-2021-20635 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N| Base Score: 4.3 CVSS v2|...
LOGITEC CORPORATION LAN-W300N/RS Security Breach
A security vulnerability exists in the LOGITEC CORPORATION LAN-W300N / RS. When a user logged into the device management web page accesses a specially crafted URL, a denial of service may result...
LOGITEC CORPORATION LAN-WN/RS Cross-Site Request Forgery Vulnerability
A cross-site request forgery vulnerability exists in the LOGITEC CORPORATION LAN-W300N / RS. When a user logged in to the device management web page accesses a specially crafted URL, an unintended action on the device such as - may change device settings...