CVE-2022-39864
published 2022-10-07CVE-2022-39864: Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1.7.89.25 allows attackers to access sensitive information via implicit intent.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | smartthings | < 1.7.85.25 | 1.7.85.25 |
| samsung_mobile | smartthings | >= unspecified < 1.7.89.25 | 1.7.89.25 |