This page lists publicly disclosed CVE vulnerabilities affecting samsung flow (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-20972 | Improper verification of intent by broadcast receiver in Samsung Flow prior to version 4.9.17.6 allows local attackers to modify Samsung Flow configuration. | [email protected] | 6.2 | 0.07% | 2025-05-07 | 2025-07-16 |
| CVE-2025-20971 | Improper input validation in Samsung Flow prior to version 4.9.17.6 allows local attackers to access data within Samsung Flow. | [email protected] | 5.5 | 0.07% | 2025-05-07 | 2025-07-16 |
| CVE-2024-49407 | Improper access control in Samsung Flow prior to version 4.9.15.7 allows physical attackers to access data across multiple user profiles. | [email protected] | 4.6 | 0.16% | 2024-11-06 | 2024-11-13 |
| CVE-2024-34600 | Improper verification of intent by broadcast receiver vulnerability in Samsung Flow prior to version 4.9.13.0 allows local attackers to copy image files to external storage. | [email protected] | 4.4 | 0.10% | 2024-07-02 | 2024-11-21 |
| CVE-2023-21444 | Improper cryptographic implementation in Samsung Flow for PC 4.9.14.0 allows adjacent attackers to decrypt encrypted messages or inject commands. | [email protected] | 7.5 | 0.19% | 2023-02-09 | 2024-11-21 |
| CVE-2023-21443 | Improper cryptographic implementation in Samsung Flow for Android prior to version 4.9.04 allows adjacent attackers to decrypt encrypted messages or inject commands. | [email protected] | 7.5 | 0.19% | 2023-02-09 | 2024-11-21 |