Cross site request forgery (csrf)

2022-05-0314:15:00

PRIOn knowledge base

www.prio-n.com

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.3%

JSON

An issue was discovered in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations.

CPENameOperatorVersion
optionslt9.60.87

CPE	Name	Operator	Version
	options	lt	9.60.87

References

support.logi.com/hc/en-us/articles/360025297893