Lucene search
K

384 matches found

CVE
CVE
added 2018/12/20 9:0 p.m.40 views

CVE-2018-15722

CVE-2018-15722 affects the Logitech Harmony Hub prior to version 4.15.206, where an OS command injection vulnerability exists via the time update request. A remote attacker can inject shell commands by sending a crafted response to the time synchronization flow, enabling remote unauthenticated co...

9.3CVSS8.3AI score0.01643EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/12/20 9:0 p.m.20 views

CVE-2018-15721

The XMPP server in Logitech Harmony Hub before version 4.15.206 is vulnerable to authentication bypass via a crafted XMPP request. Remote attackers can use this vulnerability to gain access to the local API...

9.4AI score0.01825EPSS
Exploits1References1
CVE
CVE
added 2018/12/20 9:0 p.m.39 views

CVE-2018-15720

Affected product: Logitech Harmony Hub. Vulnerability: hard-coded XMPP accounts in the hub’s XMPP server allow remote, unauthenticated access to the local API. Root cause: exposed credentials baked into the firmware prior to 4.15.206. Impact: potential remote control of the hub APIs; effect on co...

9.8CVSS9AI score0.01495EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/12/20 9:0 p.m.17 views

CVE-2018-15720

Logitech Harmony Hub before version 4.15.206 contained two hard-coded accounts in the XMPP server that gave remote users access to the local API...

9.2AI score0.01495EPSS
Exploits1References1
CVE
CVE
added 2018/12/20 9:0 p.m.44 views

CVE-2018-15721

CVE-2018-15721 affects Logitech Harmony Hub, where the XMPP server before 4.15.206 allows authentication bypass via a crafted XMPP request, enabling remote, unauthenticated access to the device’s local API. Connected sources confirm the vulnerability enables full control of the hub, with attacker...

9.8CVSS9.2AI score0.01825EPSS
Exploits1References1Affected Software1
OpenVAS
OpenVAS
added 2018/12/18 12:0 a.m.13 views

Logitech Options < 7.10.3 Remote Command Execution Vulnerability - Windows

Logitech Options is prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.3AI score
Exploits0References1
ThreatPost
ThreatPost
added 2018/12/14 3:55 p.m.12 views

Logitech Keystroke Injection Flaw Went Unaddressed for Months

Computer peripheral giant Logitech has finally issued a patched version of its Logitech Options desktop app, after being taken to task for a months-old security flaw. The bug could have allowed adversaries to launch keystroke injection attacks against Logitech keyboard owners that used the app...

0.8AI score
Exploits0References6
OpenVAS
OpenVAS
added 2018/12/14 12:0 a.m.14 views

Logitech Options Detection (Windows SMB Login)

SMB login-based detection of Logitech Options. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Exploits0
OpenVAS
OpenVAS
added 2018/12/12 12:0 a.m.36 views

Logitech SqueezeCenter/Media Server CLI Detection

The script tries to identify services supporting Logitech SqueezeCenter/Media Server CLI interface. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/10/02 9:46 p.m.9 views

partner.logitech.com XSS vulnerability

Open Bug Bounty ID: OBB-682027 Description| Value ---|--- Affected Website:| partner.logitech.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...

Exploits0
Openbugbounty
Openbugbounty
added 2018/10/02 9:35 p.m.8 views

alert.logitech.com XSS vulnerability

Open Bug Bounty ID: OBB-682026 Description| Value ---|--- Affected Website:| alert.logitech.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidd...

Exploits0
CNVD
CNVD
added 2018/07/31 12:0 a.m.2 views

LOGICOOL CONNECTION UTILITY SOFTWARE Untrusted Search Path Vulnerability

LOGICOOL CONNECTION UTILITY SOFTWARE is a suite of software from the Swedish company LOGICOOL for restoring the connection of Logitech devices to non-Unifying wireless receivers. An untrusted search path vulnerability exists in LOGICOOL CONNECTION UTILITY SOFTWARE versions prior to 2.30.9, which...

7.8CVSS7.9AI score0.00882EPSS
Exploits0References1
OSV
OSV
added 2018/07/26 5:29 p.m.2 views

CVE-2018-0621

Untrusted search path vulnerability in LOGICOOL CONNECTION UTILITY SOFTWARE versions before 2.30.9 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS5.8AI score0.00882EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2018/06/22 4:42 a.m.16 views

meeting.logitech.com XSS vulnerability

Open Bug Bounty ID: OBB-635135 Description| Value ---|--- Affected Website:| meeting.logitech.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/06/22 4:26 a.m.6 views

partner.logitech.com XSS vulnerability

Open Bug Bounty ID: OBB-635134 Description| Value ---|--- Affected Website:| partner.logitech.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/06/05 9:9 a.m.11 views

blog.logitech.com Improper Access Control vulnerability

Open Bug Bounty ID: OBB-627431 Description| Value ---|--- Affected Website:| blog.logitech.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Wordpress Vulnerability Type:| IAC Improper Access Control / CWE-284 CVSSv3 Score:| 6.5...

0.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/06/05 12:0 a.m.11 views

Logitech Harmony Hub Detection via HTTP

Binary data 700258.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2018/06/05 12:0 a.m.8 views

Logitech Harmony Hub UUID Detection via HTTP

Binary data 700257.prm...

7.3AI score
Exploits0References1
myhack58
myhack58
added 2018/05/21 12:0 a.m.52 views

The Logitech smart home management system, the Logitech Harmony Hub vulnerability analysis-vulnerability warning-the black bar safety net

! Recently, fireeye Mandiant Red Team team found that the Logitech smart IOT home management system the Logitech Harmony Hub, the presence of a plurality of available vulnerability, an attacker can exploit these vulnerabilities to bypass system restrictions, through SSH access to the device Syste...

7.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/05/13 2:42 a.m.10 views

support.logitech.com XSS vulnerability

Open Bug Bounty ID: OBB-615939 Description| Value ---|--- Affected Website:| support.logitech.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Rows per page
Query Builder