Unrated severityNVD Advisory· Published Apr 12, 2022· Updated Sep 16, 2024
Logitech Sync desktop application prior to 2.4.574 - TOCTOU during installation leads to privelege escalation
CVE-2022-0915
Description
There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for Windows prior to 2.4.574. Successful exploitation of these vulnerabilities may escalate the permission to the system user.
Affected products
2- Range: <2.4.574
- Logitech/Syncv5Range: prior to 2.4.574
Patches
Vulnerability mechanics
References
1- prosupport.logi.com/hc/en-us/articles/360040085114-Download-Logitech-Syncmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.