CVE Tools

logitech

ICS / OT / IoTCHcommercial

15

Cumulative CVEs

5

Monthly snapshots

#27

Peak rank

Top products

lan-w300n\/pgrb firmware3 lan-w300n\/pr5b firmware2 lan-w300n\/rs firmware2

Latest CVEs

The 15 most recently published vulnerabilities affecting logitech.

CVE-2024-8258Insecure Electron Fuses in Logitech Options Plus Allowing Arbitrary Code Execution on macOS7.8Sep 10, 2024
CVE-2024-8011Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within Options+ runtime and abuse permissions granted by the user to Options+ such as Camera.5.5Aug 25, 2024
CVE-2024-4031MEVO WEBCAM APP Windows Unquoted Service Path Vulnerability4.4Apr 23, 2024
CVE-2024-2537Electron Code Injection in Logi Tune macOS Application4.4Mar 15, 2024
CVE-2022-36263StreamLabs Desktop Application 1.9.0 is vulnerable to Incorrect Access Control via obs64.exe. An attacker can execute arbitrary code via a crafted .exe file.7.3Aug 19, 2022
CVE-2022-0916Broken authentication on Logitech Options due to misvalidation of Oauth state parameter8.4May 3, 2022
CVE-2022-0915Logitech Sync desktop application prior to 2.4.574 - TOCTOU during installation leads to privelege escalation6.0Apr 12, 2022
CVE-2021-38547Logitech Z120 and S120 speakers through 2021-08-09 allow remote attackers to recover speech signals from an LED on the device, via a telescope and an electro-optical sensor, aka a "Glowworm" attack...5.9Aug 11, 2021
CVE-2021-20642Improper check or handling of exceptional conditions in LOGITEC LAN-W300N/RS allows a remote attacker to cause a denial-of-service (DoS) condition by sending a specially crafted URL.6.5Feb 12, 2021
CVE-2021-20641Cross-site request forgery (CSRF) vulnerability in LOGITEC LAN-W300N/RS allows remote attackers to hijack the authentication of administrators via a specially crafted URL. As a result, unintended o...6.5Feb 12, 2021
CVE-2021-20640Buffer overflow vulnerability in LOGITEC LAN-W300N/PGRB allows an attacker with administrative privilege to execute an arbitrary OS command via unspecified vectors.6.8Feb 12, 2021
CVE-2021-20639LOGITEC LAN-W300N/PGRB allows an attacker with administrative privilege to execute arbitrary OS commands via unspecified vectors.6.8Feb 12, 2021
CVE-2021-20638LOGITEC LAN-W300N/PGRB allows an attacker with administrative privilege to execute arbitrary OS commands via unspecified vectors.6.8Feb 12, 2021
CVE-2021-20637Improper check or handling of exceptional conditions in LOGITEC LAN-W300N/PR5B allows a remote attacker to cause a denial-of-service (DoS) condition by sending a specially crafted URL.6.5Feb 12, 2021
CVE-2021-20636Cross-site request forgery (CSRF) vulnerability in LOGITEC LAN-W300N/PR5B allows remote attackers to hijack the authentication of administrators via a specially crafted URL. As a result, unintended...6.5Feb 12, 2021