CVE-2021-25508

Summary

Improper privilege management vulnerability in API Key used in SmartThings prior to 1.7.73.22 allows an attacker to abuse the API key without limitation.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSmartThings- < 1.7.73.22affected

Weaknesses

  • CWE-269: CWE-269 Improper Privilege Management

ADP Enrichment

CVE Program Container

Additional References

References