Lucene search
K

6 matches found

CVE
CVE
added 2023/02/09 12:0 a.m.67 views

CVE-2023-21443

CVE-2023-21443 affects Samsung Flow for Android prior to version 4.9.04, due to an improper cryptographic implementation. This vulnerability enables adjacent attackers to decrypt encrypted messages or inject commands. The publicly available sources identify the affected version range and provide ...

8.8CVSS8.4AI score0.00192EPSS
CVE
CVE
added 2023/02/09 12:0 a.m.61 views

CVE-2023-21444

CVE-2023-21444 affects Samsung Flow for PC, version 4.9.14.0. The root cause is an improper cryptographic implementation, which enables adjacent attackers to decrypt encrypted messages or inject commands. The vulnerability is limited to the described version; the connected PT-2023-18211 entry exp...

8.8CVSS8.5AI score0.00192EPSS
CVE
CVE
added 2024/07/02 9:23 a.m.60 views

CVE-2024-34600

CVE-2024-34600 relates to Samsung Flow, with versions prior to 4.9.13.0 affected. The issue is an improper verification of intent by a broadcast receiver, which could allow a local attacker to copy image files to external storage. Connected reports confirm affected software as Samsung Flow and sp...

4.4CVSS6.9AI score0.0013EPSS
CVE
CVE
added 2025/05/07 8:24 a.m.60 views

CVE-2025-20971

Samsung Flow games console: A CVE-2025-20971 vulnerability affects Samsung Flow prior to version 4.9.17.6, caused by improper input validation. This allows a local attacker to access data within Samsung Flow. Impact is data exposure within the app; no exploit details are provided. Remediation: up...

5.5CVSS5.4AI score0.0013EPSS
CVE
CVE
added 2025/05/07 8:24 a.m.57 views

CVE-2025-20972

Samsung Flow is affected by an improper verification of intent in the broadcast receiver in versions prior to 4.9.17.6, enabling local attackers to modify the Flow configuration. The issue is documented across multiple sources, with PT-Security specifying the affected versions and a remediation: ...

6.2CVSS6.2AI score0.00113EPSS
CVE
CVE
added 2024/11/06 2:17 a.m.46 views

CVE-2024-49407

CVE-2024-49407 concerns Samsung Flow, with improper access control in versions prior to 4.9.15.7. The issue allows a physical attacker to access data across multiple user profiles on affected Samsung Flow deployments. The root cause is access control weakness that does not properly isolate user p...

4.6CVSS4.7AI score0.00205EPSS