CVE-2024-49416: Use of implicit intent for sensitive communication in SmartThings prior to version 1.8.21 allows local attackers to get sensitive information.
4.0
CVSS
Description
Use of implicit intent for sensitive communication in SmartThings prior to version 1.8.21 allows local attackers to get sensitive information.
Classification
CVE ID: CVE-2024-49416
CVSS Base Severity: MEDIUM
CVSS Base Score: 4.0
Affected Products
Vendor: Samsung Mobile
Product: SmartThings
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 11.44% (scored less or equal to compared to others)
EPSS Date: 2025-02-03 (when was this score calculated)