Level Smart Lock is vulnerable to Incorrect Access Control. By performing a malicious series of lock credential synchronization steps, a revoked tenant can continue to operate the lock.
Please read Section 5.1 “Weakness 3: Inadequately Defined Causal Consistency in Access Policy Synchronization” of our paper.
CVE-2022-37192
Xin’an Zhou, UC Riverside; Jiale Guan, Indiana University Bloomington; Luyi Xing, Indiana University Bloomington; Zhiyun Qian, UC Riverside.