Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samsung smartthings vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-39864
Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows malicious users to access sensitive information via implicit intent.
Samsung Smartthings
7.5
CVSSv3
CVE-2022-39865
Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to version 1.7.89.0 allows malicious users to access sensitive information via implicit broadcast.
Samsung Smartthings
7.5
CVSSv3
CVE-2022-39866
Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows malicious users to access sensitive information via implicit broadcast.
Samsung Smartthings
7.5
CVSSv3
CVE-2022-39867
Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows malicious users to access sensitive information via SHOW_PERSISTENT_BANNER broadcast.
Samsung Smartthings
7.5
CVSSv3
CVE-2022-39868
Improper access control vulnerability in GedSamsungAccount.kt SmartThings prior to version 1.7.89.0 allows malicious users to access sensitive information via implicit broadcast.
Samsung Smartthings
7.5
CVSSv3
CVE-2022-39869
Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows malicious users to access sensitive information via REMOVE_PERSISTENT_BANNER broadcast.
Samsung Smartthings
7.5
CVSSv3
CVE-2022-39870
Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows malicious users to access sensitive information via PUSH_MESSAGE_RECEIVED broadcast.
Samsung Smartthings
7.5
CVSSv3
CVE-2022-39871
Improper access control vulnerability cloudNotificationManager.java in SmartThings prior to version 1.7.89.0 allows malicious users to access sensitive information via implicit broadcasts.
Samsung Smartthings
7.5
CVSSv3
CVE-2022-30746
Missing caller check in Smart Things prior to version 1.7.85.12 allows malicious user to access senstive information remotely using javascript interface API.
Samsung Smartthings
5.5
CVSSv3
CVE-2022-30747
PendingIntent hijacking vulnerability in Smart Things before 1.7.85.25 allows local malicious users to access files without permission via implicit Intent.
Samsung Smartthings
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »