Lucene search
K

522 matches found

NVD
NVD
added 2022/10/07 3:15 p.m.24 views

CVE-2022-39866

Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

7.5CVSS0.00342EPSS
Exploits0References1
NVD
NVD
added 2022/10/07 3:15 p.m.21 views

CVE-2022-39865

Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

7.5CVSS0.00342EPSS
Exploits0References1
OSV
OSV
added 2022/10/07 3:15 p.m.4 views

CVE-2022-39866

Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

7.5CVSS5.8AI score0.00342EPSS
Exploits0References1
OSV
OSV
added 2022/10/07 3:15 p.m.2 views

CVE-2022-39865

Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

7.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2022/10/07 3:15 p.m.3 views

CVE-2022-39864

Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent...

7.5CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/07 3:15 p.m.3 views

CVE-2022-39866

Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

7.5CVSS5.8AI score0.00342EPSS
Exploits0References2
NVD
NVD
added 2022/10/07 3:15 p.m.20 views

CVE-2022-39864

Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent...

7.5CVSS0.00323EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/07 3:15 p.m.2 views

CVE-2022-39864

Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent...

7.5CVSS5.8AI score0.00323EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/10/07 3:15 p.m.7 views

CVE-2022-39865

Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

7.5CVSS5.8AI score0.00342EPSS
Exploits0References2
Prion
Prion
added 2022/10/07 3:15 p.m.14 views

Improper access control

Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via PUSHMESSAGERECEIVED broadcast...

5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/07 3:15 p.m.19 views

Improper access control

Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via REMOVEPERSISTENTBANNER broadcast...

5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/07 3:15 p.m.16 views

Improper access control

Improper access control vulnerability in GedSamsungAccount.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/07 3:15 p.m.18 views

Improper access control

Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent...

5CVSS7.3AI score0.00323EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/07 3:15 p.m.16 views

Improper access control

Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/07 3:15 p.m.20 views

Improper access control

Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/07 3:15 p.m.16 views

Improper access control

Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via SHOWPERSISTENTBANNER broadcast...

5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/07 3:15 p.m.18 views

Improper access control

Improper access control vulnerability cloudNotificationManager.java in SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcasts...

5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/07 12:0 a.m.5 views

PT-2022-25059 · Samsung · Smartthings

Name of the Vulnerable Software and Affected Versions: SmartThings versions prior to 1.7.89.0 Description: The issue is related to improper access control in the GedSamsungAccount.kt file, allowing attackers to access sensitive information via implicit broadcast. Recommendations: For versions pri...

7.5CVSS7.3AI score0.00342EPSS
Exploits0References3
CVE
CVE
added 2022/10/07 12:0 a.m.59 views

CVE-2022-39867

CVE-2022-39867 concerns Samsung SmartThings; the issue resides in the cloudNotificationManager.java component. Affected software is SmartThings prior to version 1.7.89.0, where improper access control could permit an attacker to access sensitive information via the SHOW_PERSISTENT_BANNER broadcas...

7.5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/10/07 12:0 a.m.55 views

CVE-2022-39871

CVE-2022-39871 affects Samsung SmartThings (CloudNotificationManager.java) with an improper access control flaw in versions prior to 1.7.89.0. Exploitation could allow an attacker to access sensitive information via implicit broadcasts. The issue is supported by multiple sources (Red Hat, NVD/CVE...

7.5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder