CVE-2018-15722

Published: Dec 20, 2018

Modified: Sep 17, 2024

PUBLISHED

Description

The Logitech Harmony Hub before version 4.15.206 is vulnerable to OS command injection via the time update request. A remote server or man in the middle can inject OS commands with a properly formatted response.

Vendor	Product	Versions
Logitech	Logitech Harmony Hub	affected `Firmware before 4.15.206`

Weaknesses (CWE)

CWE-78

References

https://www.tenable.com/security/research/tra-2018-47

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-15722

Description

Affected Products

Weaknesses (CWE)

References