Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Smartthings
(Samsung)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 14 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-04-09 | CVE-2021-25378 | Improper access control of certain port in SmartThings prior to version 1.7.63.6 allows remote temporary denial of service. | Smartthings | 5.3 | ||
| 2021-11-05 | CVE-2021-25508 | Improper privilege management vulnerability in API Key used in SmartThings prior to 1.7.73.22 allows an attacker to abuse the API key without limitation. | Smartthings | 9.8 | ||
| 2022-06-07 | CVE-2022-30746 | Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API. | Smartthings | 7.5 | ||
| 2022-06-07 | CVE-2022-30747 | PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent. | Smartthings | 5.5 |