Lucene search
K

384 matches found

OpenVAS
OpenVAS
added 2018/12/28 12:0 a.m.11 views

Logitech SqueezeCenter/Media Server Detection Consolidation

Consolidation of Logitech SqueezeCenter/Media Server detections. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Exploits0References1
OpenVAS
OpenVAS
added 2018/12/28 12:0 a.m.24 views

Logitech SqueezeCenter/Media Server Detection (SlimProto TCP)

Detection of a Logitech SqueezeCenter/Media Server via SlimProto TCP. This script sends a SlimProto TCP SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2018/12/28 12:0 a.m.17 views

Logitech SqueezeCenter/Media Server Detection (UDP)

Detection of a Logitech SqueezeCenter/Media Server via UDP. This script sends an UDP discovery request to the target and tries to get the version from the response. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2018/12/27 12:0 a.m.4 views

The vulnerability of the Logitech Options peripheral control utility allows a hacker to execute arbitrary commands.

The vulnerability of the Logitech Options peripheral control utility lies in the lack of restrictions on the number of authentication attempts made through the WebSocket server. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using a specially crafted web page...

7.6CVSS5.9AI score
Exploits0References5Affected Software1
CNVD
CNVD
added 2018/12/21 12:0 a.m.3 views

Logitech Harmony Hub OS Command Injection Vulnerability

Logitech Harmony Hub is a remote control device from Logitech USA. An operating system command injection vulnerability exists in Logitech Harmony Hub versions prior to 4.15.206, which can be exploited by an attacker to inject operating system commands by sending a time update request...

9.3CVSS7.8AI score0.01643EPSS
Exploits0References1
CNVD
CNVD
added 2018/12/21 12:0 a.m.2 views

Logitech Harmony Hub Command Injection Vulnerability

Logitech Harmony Hub is a remote control device from Logitech USA. A command injection vulnerability exists in Logitech Harmony Hub versions prior to 4.15.206, which can be exploited by a remote attacker to execute application-defined commands e.g., harmony.system?systeminfo by sending a speciall...

9.8CVSS8AI score0.03699EPSS
Exploits1References1
NVD
NVD
added 2018/12/20 9:29 p.m.22 views

CVE-2018-15721

The XMPP server in Logitech Harmony Hub before version 4.15.206 is vulnerable to authentication bypass via a crafted XMPP request. Remote attackers can use this vulnerability to gain access to the local API...

9.8CVSS9.4AI score0.01825EPSS
Exploits1References1
NVD
NVD
added 2018/12/20 9:29 p.m.11 views

CVE-2018-15723

The Logitech Harmony Hub before version 4.15.206 is vulnerable to application level command injection via crafted HTTP request. An unauthenticated remote attacker can leverage this vulnerability to execute application defined commands e.g. harmony.system?systeminfo...

9.8CVSS10AI score0.03699EPSS
Exploits1References1
NVD
NVD
added 2018/12/20 9:29 p.m.14 views

CVE-2018-15722

The Logitech Harmony Hub before version 4.15.206 is vulnerable to OS command injection via the time update request. A remote server or man in the middle can inject OS commands with a properly formatted response...

9.3CVSS8.4AI score0.01643EPSS
Exploits0References1
Prion
Prion
added 2018/12/20 9:29 p.m.19 views

Authentication flaw

The XMPP server in Logitech Harmony Hub before version 4.15.206 is vulnerable to authentication bypass via a crafted XMPP request. Remote attackers can use this vulnerability to gain access to the local API...

7.5CVSS9.3AI score0.01825EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/12/20 9:29 p.m.4 views

CVE-2018-15721

The XMPP server in Logitech Harmony Hub before version 4.15.206 is vulnerable to authentication bypass via a crafted XMPP request. Remote attackers can use this vulnerability to gain access to the local API...

9.8CVSS5.8AI score0.01825EPSS
Exploits1References1
OSV
OSV
added 2018/12/20 9:29 p.m.3 views

CVE-2018-15720

Logitech Harmony Hub before version 4.15.206 contained two hard-coded accounts in the XMPP server that gave remote users access to the local API...

9.8CVSS5.8AI score0.01495EPSS
Exploits1References1
NVD
NVD
added 2018/12/20 9:29 p.m.13 views

CVE-2018-15720

Logitech Harmony Hub before version 4.15.206 contained two hard-coded accounts in the XMPP server that gave remote users access to the local API...

9.8CVSS9.2AI score0.01495EPSS
Exploits1References1
Prion
Prion
added 2018/12/20 9:29 p.m.11 views

Hardcoded credentials

Logitech Harmony Hub before version 4.15.206 contained two hard-coded accounts in the XMPP server that gave remote users access to the local API...

7.5CVSS9.1AI score0.01495EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/12/20 9:29 p.m.2 views

CVE-2018-15723

The Logitech Harmony Hub before version 4.15.206 is vulnerable to application level command injection via crafted HTTP request. An unauthenticated remote attacker can leverage this vulnerability to execute application defined commands e.g. harmony.system?systeminfo...

9.8CVSS5.9AI score0.03699EPSS
Exploits1References1
Prion
Prion
added 2018/12/20 9:29 p.m.11 views

Command injection

The Logitech Harmony Hub before version 4.15.206 is vulnerable to application level command injection via crafted HTTP request. An unauthenticated remote attacker can leverage this vulnerability to execute application defined commands e.g. harmony.system?systeminfo...

7.5CVSS9.8AI score0.03699EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2018/12/20 9:29 p.m.16 views

Command injection

The Logitech Harmony Hub before version 4.15.206 is vulnerable to OS command injection via the time update request. A remote server or man in the middle can inject OS commands with a properly formatted response...

9.3CVSS8.3AI score0.01643EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/12/20 9:0 p.m.17 views

CVE-2018-15723

The Logitech Harmony Hub before version 4.15.206 is vulnerable to application level command injection via crafted HTTP request. An unauthenticated remote attacker can leverage this vulnerability to execute application defined commands e.g. harmony.system?systeminfo...

10AI score0.03699EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/12/20 9:0 p.m.18 views

CVE-2018-15722

The Logitech Harmony Hub before version 4.15.206 is vulnerable to OS command injection via the time update request. A remote server or man in the middle can inject OS commands with a properly formatted response...

8.5AI score0.01643EPSS
Exploits0References1
CVE
CVE
added 2018/12/20 9:0 p.m.38 views

CVE-2018-15723

The Logitech Harmony Hub is affected by CVE-2018-15723, with the vulnerability present in versions prior to 4.15.206. It is an application‑level command injection vulnerability exploitable via a crafted HTTP request, allowing an unauthenticated remote attacker to execute application defined comma...

9.8CVSS9.9AI score0.03699EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder