There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for Windows prior to 2.4.574. Successful exploitation of these vulnerabilities may escalate the permission to the system user.
References
Link | Resource |
---|---|
https://prosupport.logi.com/hc/en-us/articles/360040085114-Download-Logitech-Sync | Vendor Advisory |
Configurations
History
21 Apr 2022, 12:43
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 6.9
v3 : 7.0 |
CPE | cpe:2.3:a:logitech:sync:*:*:*:*:*:windows:*:* | |
References | (MISC) https://prosupport.logi.com/hc/en-us/articles/360040085114-Download-Logitech-Sync - Vendor Advisory | |
CWE | CWE-367 |
12 Apr 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-04-12 19:15
Updated : 2024-02-04 22:29
NVD link : CVE-2022-0915
Mitre link : CVE-2022-0915
CVE.ORG link : CVE-2022-0915
JSON object : View
Products Affected
logitech
- sync
CWE
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition