CVE-2022-39867

Summary

Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via SHOW_PERSISTENT_BANNER broadcast.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSmartThingsunspecified < 1.7.89.0affected

Weaknesses

  • CWE-284: CWE-284 Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References