25 matches found
EUVD-2024-48883
Malicious code in bioql PyPI...
EUVD-2024-49051
Malicious code in bioql PyPI...
EUVD-2022-15943
Malicious code in bioql PyPI...
CVE-2024-8258
Improper Control of Generation of Code 'Code Injection' in Electron Fuses in Logitech Options Plus version 1.60.496306 on macOS allows attackers to execute arbitrary code via insecure Electron Fuses configuration...
CVE-2024-8258
Improper Control of Generation of Code 'Code Injection' in Electron Fuses in Logitech Options Plus version 1.60.496306 on macOS allows attackers to execute arbitrary code via insecure Electron Fuses configuration...
CVE-2024-8258
CVE-2024-8258 affects Logitech Options Plus on macOS (v1.60.496306). The issue is due to improper control of generation of code in Electron Fuses, enabling arbitrary code execution via insecure Electron Fuses configuration (local attack vector, no user interaction; CVSS 3.1 base 7.8, high). Some ...
CVE-2024-8258 Insecure Electron Fuses in Logitech Options Plus Allowing Arbitrary Code Execution on macOS
Improper Control of Generation of Code 'Code Injection' in Electron Fuses in Logitech Options Plus version 1.60.496306 on macOS allows attackers to execute arbitrary code via insecure Electron Fuses configuration...
CVE-2024-8258 Insecure Electron Fuses in Logitech Options Plus Allowing Arbitrary Code Execution on macOS
Improper Control of Generation of Code 'Code Injection' in Electron Fuses in Logitech Options Plus version 1.60.496306 on macOS allows attackers to execute arbitrary code via insecure Electron Fuses configuration...
PT-2024-38895 · Logitech · Logitech Options Plus
Name of the Vulnerable Software and Affected Versions: Logitech Options Plus version 1.60.496306 Description: The issue is related to improper control of generation of code, also known as 'code injection', in Electron Fuses within Logitech Options Plus on macOS. This allows attackers to execute...
Logitech Options 安全漏洞
Logitech Options is a powerful and easy-to-use application from Logitech Switzerland that enhances your Logitech mouse, keyboard, and touchpad. A security vulnerability exists in Logitech Options version 1.60.496306, which originates from improperly controlled code generation in Electron fuses an...
CVE-2024-8011
Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within Options+ runtime and abuse permissions granted by the user to Options+ such as Camera...
CVE-2024-8011
Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within Options+ runtime and abuse permissions granted by the user to Options+ such as Camera...
CVE-2024-8011
Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within Options+ runtime and abuse permissions granted by the user to Options+ such as Camera...
CVE-2024-8011
Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within Options+ runtime and abuse permissions granted by the user to Options+ such as Camera...
CVE-2024-8011
CVE-2024-8011 affects Logitech Options+ on macOS prior to 1.72. The issue allows a local attacker to inject a dynamic library into the Options+ runtime and abuse user-granted permissions (e.g., Camera). Root cause is the ability to load/execute injected code within the Options+ process while main...
Logitech Options 安全漏洞
Logitech Options is a powerful and easy-to-use application from Logitech Switzerland that enhances your Logitech mouse, keyboard and touchpad. A security vulnerability exists in Logitech Options 1.70.551909 and earlier versions, which originated from a vulnerability that allows a local attacker t...
PT-2024-38751 · Logitech · Logitech Options
Name of the Vulnerable Software and Affected Versions: Logitech Options+ versions prior to 1.72 Description: The issue allows a local attacker to inject a dynamic library within the Logitech Options+ runtime and abuse permissions granted by the user, such as access to the Camera. This can lead to...
CVE-2022-0916
An issue was discovered in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations...
CVE-2022-0916
An issue was discovered in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations...
Cross site request forgery (csrf)
An issue was discovered in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations...