Samsung Smartthings Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Samsung Smartthings Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-25446 — CVSS 5.3 (medium): Improper access control vulnerability in SmartThings prior to version 1.7.67.25 allows untrusted applications to cause arbitrary webpage…
CVE-2021-25447 — CVSS 5.3 (medium): Improper access control vulnerability in SmartThings prior to version 1.7.67.25 allows untrusted applications to cause local file inclusion…
CVE-2021-25404 — CVSS 3.3 (low): Information Exposure vulnerability in SmartThings prior to version 1.7.64.21 allows attacker to access user information via log.