Lucene search

Smart Things Security Vulnerabilities

cve

CVE-2023-21432

Improper access control vulnerabilities in Smart Things prior to 1.7.93 allows to attacker to invite others without authorization of the...

7.8CVSS

7.7AI Score

0.0004EPSS

2023-02-09 07:15 PM

cve

CVE-2022-30749

Improper access control vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to add arbitrary smart devices by bypassing login...

7.8CVSS

7.5AI Score

0.0004EPSS

2022-06-07 07:15 PM

cve

CVE-2022-30746

Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface...

7.5CVSS

7.4AI Score

0.001EPSS

2022-06-07 07:15 PM

568

cve

CVE-2022-30747

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit...

5.5CVSS

5.3AI Score

0.0004EPSS

2022-06-07 07:15 PM

cve

CVE-2021-25446

Improper access control vulnerability in SmartThings prior to version 1.7.67.25 allows untrusted applications to cause arbitrary webpage loading in...

5.3CVSS

5.4AI Score

0.001EPSS

2021-08-05 08:15 PM

cve

CVE-2021-25447

Improper access control vulnerability in SmartThings prior to version 1.7.67.25 allows untrusted applications to cause local file inclusion in...

5.3CVSS

5.2AI Score

0.001EPSS

2021-08-05 08:15 PM