CVE-2022-39866
published 2022-10-07CVE-2022-39866: Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcast.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | smartthings | < 1.7.89.0 | 1.7.89.0 |
| samsung_mobile | smartthings | >= unspecified < 1.7.89.0 | 1.7.89.0 |