Lucene search
K

522 matches found

CNNVD
CNNVD
added 2022/10/07 12:0 a.m.3 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices version 1.7.89.0 due to an improper access control vulnerability in...

7.5CVSS7.4AI score0.00342EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/10/07 12:0 a.m.26 views

CVE-2022-39871

Improper access control vulnerability cloudNotificationManager.java in SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcasts...

4CVSS7.5AI score0.00342EPSS
Exploits0References1
CVE
CVE
added 2022/10/07 12:0 a.m.52 views

CVE-2022-39866

CVE-2022-39866 affects Samsung SmartThings prior to version 1.7.89.0, with the vulnerability located in RegisteredEventMediator.kt. The root cause is improper access control that can allow an attacker to access sensitive information via implicit broadcast. Documents consistently indicate affected...

7.5CVSS7.3AI score0.00342EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/10/07 12:0 a.m.24 views

CVE-2022-39864

Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent...

3.3CVSS7.5AI score0.00323EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/07 12:0 a.m.27 views

CVE-2022-39866

Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast...

4CVSS7.5AI score0.00342EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/16 12:0 a.m.23 views

Samsung SmartThings PendingIntent Hijacking Vulnerability

SmartThings is a powerful Samsung smart home mobile app. A PendingIntent hijacking vulnerability exists in versions prior to Samsung SmartThings 1.7.85.25. An unauthorized local attacker can exploit the vulnerability to access files via an implicit Intent...

5.5CVSS5.2AI score0.00191EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/14 12:0 a.m.18 views

Samsung SmartThings Access Control Error Vulnerability

Samsung SmartThings is a powerful Samsung smart home mobile app from Samsung South Korea.An access control error vulnerability exists in versions prior to Samsung SmartThings 1.7.85.25. The vulnerability stems from improper access control and can be exploited by local attackers to bypass login...

7.8CVSS3.5AI score0.0018EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/06/07 7:15 p.m.4 views

CVE-2022-30746

Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API...

7.5CVSS5.8AI score0.00826EPSS
Exploits0References2
OSV
OSV
added 2022/06/07 7:15 p.m.4 views

CVE-2022-30747

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent...

5.5CVSS6.1AI score0.00191EPSS
Exploits0References1
OSV
OSV
added 2022/06/07 7:15 p.m.2 views

CVE-2022-30746

Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API...

7.5CVSS5.8AI score0.00826EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/06/07 12:0 a.m.2 views

Samsung mobile 授权问题漏洞

Samsung SmartThings is a powerful Samsung smart home mobile app from Samsung South Korea.An access control error vulnerability exists in versions prior to Samsung SmartThings 1.7.85.25. The vulnerability stems from improper access control and can be exploited by local attackers to bypass login...

7.8CVSS5.8AI score0.0018EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/06/07 12:0 a.m.4 views

Samsung mobile 安全漏洞

SmartThings is a powerful Samsung smart home mobile app. A PendingIntent hijacking vulnerability exists in versions prior to Samsung SmartThings 1.7.85.25. An unauthorized local attacker can exploit the vulnerability to access files via an implicit Intent...

5.5CVSS5.6AI score0.00191EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/06/07 12:0 a.m.3 views

Samsung mobile 安全漏洞

Samsung mobile is a cell phone from Samsung South Korea. A security vulnerability exists in Samsung mobile Smart Things prior to version 1.7.85.12. The vulnerability allows an attacker to remotely access sensitive information using the javascript interface API...

7.5CVSS7.3AI score0.00826EPSS
Exploits0References2
CNVD
CNVD
added 2021/11/09 12:0 a.m.10 views

Samsung SmartThings Privilege Management Vulnerability (CNVD-2025-02721)

Samsung SmartThings is an app from Samsung South Korea that connects smart devices. A privilege management vulnerability exists in Samsung SmartThings versions prior to 1.7.73.22, which stems from improper privilege management of the API key used by SmartThings, and can be exploited by an attacke...

9.8CVSS6.7AI score0.00801EPSS
Exploits0References1
NVD
NVD
added 2021/11/05 3:15 a.m.19 views

CVE-2021-25508

Improper privilege management vulnerability in API Key used in SmartThings prior to 1.7.73.22 allows an attacker to abuse the API key without limitation...

9.8CVSS0.00801EPSS
Exploits0References1
OSV
OSV
added 2021/11/05 3:15 a.m.3 views

CVE-2021-25508

Improper privilege management vulnerability in API Key used in SmartThings prior to 1.7.73.22 allows an attacker to abuse the API key without limitation...

9.8CVSS7.3AI score0.00801EPSS
Exploits0References1
Prion
Prion
added 2021/11/05 3:15 a.m.11 views

Privilege escalation

Improper privilege management vulnerability in API Key used in SmartThings prior to 1.7.73.22 allows an attacker to abuse the API key without limitation...

7.5CVSS9.3AI score0.00801EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/11/05 2:4 a.m.55 views

CVE-2021-25508

The vulnerability CVE-2021-25508 affects Samsung SmartThings prior to version 1.7.73.22, where improper privilege management of the API key allows an attacker to abuse the API key without limitation. Impact area includes unauthorized API access with potential high-risk outcomes. Remediation: upgr...

9.8CVSS9.3AI score0.00801EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/11/05 2:4 a.m.24 views

CVE-2021-25508

Improper privilege management vulnerability in API Key used in SmartThings prior to 1.7.73.22 allows an attacker to abuse the API key without limitation...

5.3CVSS9.6AI score0.00801EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/11/05 12:0 a.m.5 views

Samsung SmartThings 安全漏洞

Samsung SmartThings is an app from Samsung South Korea that connects smart devices. A privilege management vulnerability exists in Samsung SmartThings versions prior to 1.7.73.22, which stems from improper privilege management of the API key used by SmartThings, and can be exploited by an attacke...

9.8CVSS5.6AI score0.00801EPSS
Exploits0References2
Rows per page
Query Builder