CVE-2018-15723
N/A
N/A
Summary
The Logitech Harmony Hub before version 4.15.206 is vulnerable to application level command injection via crafted HTTP request. An unauthenticated remote attacker can leverage this vulnerability to execute application defined commands (e.g. harmony.system?systeminfo).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Logitech | Logitech Harmony Hub | Firmware before 4.15.206 | affected |
Weaknesses
- CWE-346: CWE-346 Origin Validation Error
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.