Improper privilege management vulnerability in API Key used in SmartThings before 1.7.73.22 allows an malicious user to abuse the API key without limitation.
samsung smartthings