ГлавнаяУязвимости → CVE-2024-8258
7.8высокая

CVE-2024-8258

Описание

Improper Control of Generation of Code ('Code Injection') in Electron Fuses in Logitech Options Plus version 1.60.496306 on macOS allows attackers to execute arbitrary code via insecure Electron Fuses configuration.

Затрагиваемое ПО
Logitech Logi options\+Apple Macos
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/r3ggi/electroniz3rhttps://nvd.nist.gov/vuln/detail/CVE-2023-49314https://nvd.nist.gov/vuln/detail/CVE-2023-50643https://www.electronjs.org/docs/latest/tutorial/fuses