Options

options

Vendor: Logitech • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-8011 1Logitech 1Options Sep 11, 2024 Aug 25, 2024 2.0 LOW· v4 5.5 MEDIUM· v3 N/A· v2 Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within Options+ runtime and abuse permissions granted by the user to Options+ such as Camera.
CVE-2022-0916 1Logitech 1Options Nov 21, 2024 May 3, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An issue was discovered in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations.