CVE-2024-2537

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-2537
Improper Control of Dynamically-Managed Code Resources vulnerability in Logitech Logi Tune on MacOS allows Local Code Inclusion.

4.4 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 2.5

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://hackerone.com/reports/2376663 Permissions Required
https://hackerone.com/reports/2376663 Permissions Required
Configurations

Configuration 1 (hide)

cpe:2.3:a:logitech:logi_tune:-:*:*:*:*:macos:*:*
History

09 Apr 2025, 15:32

Type Values Removed Values Added
First Time Logitech
Logitech logi Tune
CPE cpe:2.3:a:logitech:logi_tune:-:*:*:*:*:macos:*:*
References () https://hackerone.com/reports/2376663 - () https://hackerone.com/reports/2376663 - Permissions Required

21 Nov 2024, 09:09

Type Values Removed Values Added
References () https://hackerone.com/reports/2376663 - () https://hackerone.com/reports/2376663 -

17 Mar 2024, 22:38

Type Values Removed Values Added
Summary
  • (es) La vulnerabilidad del control inadecuado de los recursos de código administrados dinámicamente en Logitech Logi Tune en MacOS permite la inclusión de código local.

15 Mar 2024, 18:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-03-15 18:15

Updated : 2025-04-09 15:32

NVD link : CVE-2024-2537

Mitre link : CVE-2024-2537

CVE.ORG link : CVE-2024-2537

JSON object : View

Products Affected

logitech

  • logi_tune
CWE
CWE-913

Improper Control of Dynamically-Managed Code Resources