RSS   Vulnerabilities for 'Options'   RSS

2022-05-03
 
CVE-2022-0916

CWE-352
 

 
An issue was discovered in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations.

 

 >>> Vendor: Logitech 18 Products
Cordless freedom
Cordless freedom navigator
Cordless freedom pro
Cordless itouch keyboard
Cordless freedom itouch keyboard
Itouch keyboard
Media server
Videocall
Desktop manager
Unifying firmware
R700 laser presentation remote firmware
K360 firmware
K400r firmware
K750 firmware
K830 firmware
Unifying receiver firmware
R500 firmware
Options


Copyright 2024, cxsecurity.com

 

Back to Top