Vulnerabilities > Logitech > Media Server

DATE CVE VULNERABILITY TITLE RISK
2017-11-10 CVE-2017-16568 Cross-site Scripting vulnerability in Logitech Media Server 7.9.0
Cross-site scripting (XSS) vulnerability in Logitech Media Server 7.9.0 allows remote attackers to inject arbitrary web script or HTML via a radio URL.
network
low complexity
logitech CWE-79
5.4
5.4
2017-11-10 CVE-2017-16567 Cross-site Scripting vulnerability in Logitech Media Server 7.9.0
Cross-site scripting (XSS) vulnerability in Logitech Media Server 7.9.0 allows remote attackers to inject arbitrary web script or HTML via a "favorite."
network
low complexity
logitech CWE-79
5.4
5.4
2017-10-23 CVE-2017-15687 Cross-site Scripting vulnerability in Logitech Media Server
DOM Based Cross Site Scripting (XSS) exists in Logitech Media Server 7.7.1, 7.7.2, 7.7.3, 7.7.5, 7.7.6, 7.9.0, and 7.9.1 via a crafted URI.
network
low complexity
logitech CWE-79
6.1
6.1