VYPR
Unrated severityNVD Advisory· Published Apr 12, 2022· Updated Sep 16, 2024

Logitech Sync desktop application prior to 2.4.574 - TOCTOU during installation leads to privelege escalation

CVE-2022-0915

Description

There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for Windows prior to 2.4.574. Successful exploitation of these vulnerabilities may escalate the permission to the system user.

Affected products

2
  • Bittorrent/Syncllm-fuzzy
    Range: <2.4.574
  • Logitech/Syncv5
    Range: prior to 2.4.574

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.