Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
logitech vulnerabilities and exploits
(subscribe to this query)
297
VMScore
CVE-2019-13054
The Logitech R500 presentation clicker allows malicious users to determine the AES key, leading to keystroke injection. On Windows, any text may be injected by using ALT+NUMPAD input to bypass the restriction on the characters A through Z.
Logitech R500 Firmware -
9 Github repositories
685
VMScore
CVE-2007-2918
Multiple stack-based buffer overflows in ActiveX controls (1) VibeC in (a) vibecontrol.dll, (2) CallManager and (3) ViewerClient in (b) StarClient.dll, (4) ComLink in (c) uicomlink.dll, and (5) WebCamXMP in (d) wcamxmp.dll in Logitech VideoCall allow remote malicious users to cau...
Logitech Videocall
1 EDB exploit
296
VMScore
CVE-2019-13052
Logitech Unifying devices allow live decryption if the pairing of a keyboard to a receiver is sniffed.
Logitech Unifying Receiver Firmware -
8 Github repositories
296
VMScore
CVE-2019-13053
Logitech Unifying devices allow keystroke injection, bypassing encryption. The attacker must press a "magic" key combination while sniffing cryptographic data from a Radio Frequency transmission. NOTE: this issue exists because of an incomplete fix for CVE-2016-10761.
Logitech Unifying Receiver Firmware -
6 Github repositories
614
VMScore
CVE-2022-0915
There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for Windows before 2.4.574. Successful exploitation of these vulnerabilities may escalate the permission to the system user.
Logitech Sync
605
VMScore
CVE-2022-0916
An issue exists in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations.
Logitech Options
668
VMScore
CVE-2018-15720
Logitech Harmony Hub before version 4.15.206 contained two hard-coded accounts in the XMPP server that gave remote users access to the local API.
Logitech Harmony Hub Firmware
NA
CVE-2022-36263
StreamLabs Desktop Application 1.9.0 is vulnerable to Incorrect Access Control via obs64.exe. An attacker can execute arbitrary code via a crafted .exe file.
Logitech Streamlabs Desktop 1.9.0
605
VMScore
CVE-2018-0620
Untrusted search path vulnerability in LOGICOOL Game Software versions prior to 8.87.116 allows an malicious user to gain privileges via a Trojan horse DLL in an unspecified directory.
Logitech Game Software
890
VMScore
CVE-2012-1250
Logitec LAN-W300N/R routers with firmware prior to 2.27 do not properly restrict login access, which allows remote malicious users to obtain administrative privileges and modify settings via vectors related to PPPoE authentication.
Logitech Lan-w300n\\/ru2 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »