Improper authorization in Samsung Health prior to version 7.00.0.107 allows local attackers to access connected device information.