The Logitech Harmony Hub before version 4.15.206 is vulnerable to OS command injection via the time update request. A remote server or man in the middle can inject OS commands with a properly formatted response.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
logitech harmony_hub_firmware |