Medium severity6.1NVD Advisory· Published Oct 23, 2017· Updated May 13, 2026
CVE-2017-15687
CVE-2017-15687
Description
DOM Based Cross Site Scripting (XSS) exists in Logitech Media Server 7.7.1, 7.7.2, 7.7.3, 7.7.5, 7.7.6, 7.9.0, and 7.9.1 via a crafted URI.
Affected products
7cpe:2.3:a:logitech:media_server:7.7.1:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:logitech:media_server:7.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:logitech:media_server:7.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:logitech:media_server:7.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:logitech:media_server:7.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:logitech:media_server:7.7.6:*:*:*:*:*:*:*
- cpe:2.3:a:logitech:media_server:7.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:logitech:media_server:7.9.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- fireshellsecurity.team/assets/pdf/DOM-Based-Cross-Site-Scripting-_XSS_-Logitech-Media-Server.pdfnvdThird Party Advisory
- www.exploit-db.com/exploits/43024/nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.