CVE-2018-15722

CVE-2018-15722

Vendor Logitech

Product Logitech Harmony Hub

Weakness CWE-78

Published December 20, 2018

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The Logitech Harmony Hub before version 4.15.206 is vulnerable to OS command injection via the time update request. A remote server or man in the middle can inject OS commands with a properly formatted response.

Key dates

02Disclosure timeline

December 20, 2018 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-15722

Related vulnerabilities

01Description

02Disclosure timeline

03References

04Related CVE