There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for Windows prior to 2.4.574. Successful exploitation of these vulnerabilities may escalate the permission to the system user.
References
Link | Resource |
---|---|
https://prosupport.logi.com/hc/en-us/articles/360040085114-Download-Logitech-Sync | Vendor Advisory |
https://prosupport.logi.com/hc/en-us/articles/360040085114-Download-Logitech-Sync | Vendor Advisory |
Configurations
History
21 Nov 2024, 06:39
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 6.9
v3 : 6.0 |
References | () https://prosupport.logi.com/hc/en-us/articles/360040085114-Download-Logitech-Sync - Vendor Advisory |
Information
Published : 2022-04-12 19:15
Updated : 2024-11-21 06:39
NVD link : CVE-2022-0915
Mitre link : CVE-2022-0915
CVE.ORG link : CVE-2022-0915
JSON object : View
Products Affected
logitech
- sync
CWE
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition