CSRF Vulnerability in Logitech Options OAuth 2.0 Authentication

CVE-2022-0916 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

An issue was discovered in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations.

Learn more about our Web Application Penetration Testing UK.