6 matches found
CVE-2023-21443
CVE-2023-21443 affects Samsung Flow for Android prior to version 4.9.04, due to an improper cryptographic implementation. This vulnerability enables adjacent attackers to decrypt encrypted messages or inject commands. The publicly available sources identify the affected version range and provide ...
CVE-2023-21444
CVE-2023-21444 affects Samsung Flow for PC, version 4.9.14.0. The root cause is an improper cryptographic implementation, which enables adjacent attackers to decrypt encrypted messages or inject commands. The vulnerability is limited to the described version; the connected PT-2023-18211 entry exp...
CVE-2024-34600
CVE-2024-34600 relates to Samsung Flow, with versions prior to 4.9.13.0 affected. The issue is an improper verification of intent by a broadcast receiver, which could allow a local attacker to copy image files to external storage. Connected reports confirm affected software as Samsung Flow and sp...
CVE-2025-20971
Samsung Flow games console: A CVE-2025-20971 vulnerability affects Samsung Flow prior to version 4.9.17.6, caused by improper input validation. This allows a local attacker to access data within Samsung Flow. Impact is data exposure within the app; no exploit details are provided. Remediation: up...
CVE-2025-20972
Samsung Flow is affected by an improper verification of intent in the broadcast receiver in versions prior to 4.9.17.6, enabling local attackers to modify the Flow configuration. The issue is documented across multiple sources, with PT-Security specifying the affected versions and a remediation: ...
CVE-2024-49407
CVE-2024-49407 concerns Samsung Flow, with improper access control in versions prior to 4.9.15.7. The issue allows a physical attacker to access data across multiple user profiles on affected Samsung Flow deployments. The root cause is access control weakness that does not properly isolate user p...