Skip to main content

Samsung Flow

4 CVEs product

Monthly

CVE-2022-28775 LOW Monitor

Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows attacker to write the file without Samsung Flow permission. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Samsung Authentication Bypass Samsung Flow
NVD
CVSS 3.1
3.3
EPSS
0.3%
CVE-2022-28543 MEDIUM This Month

Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4 allows local attackers to read arbitrary files as Samsung Flow permission. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Samsung Path Traversal Samsung Flow
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2021-25509 HIGH This Week

A missing input validation in Samsung Flow Windows application prior to Version 4.8.5.0 allows attackers to overwrite abtraty file in the Windows known folders. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Samsung Microsoft Information Disclosure Samsung Flow
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2021-25507 MEDIUM This Month

Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. No vendor patch available.

Samsung Authentication Bypass Samsung Flow
NVD
CVSS 3.1
5.7
EPSS
0.3%
EPSS 0% CVSS 3.3
LOW Monitor

Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows attacker to write the file without Samsung Flow permission. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Samsung Authentication Bypass Samsung Flow
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4 allows local attackers to read arbitrary files as Samsung Flow permission. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Samsung Path Traversal Samsung Flow
NVD
EPSS 0% CVSS 7.1
HIGH This Week

A missing input validation in Samsung Flow Windows application prior to Version 4.8.5.0 allows attackers to overwrite abtraty file in the Windows known folders. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Samsung Microsoft Information Disclosure +1
NVD
EPSS 0% CVSS 5.7
MEDIUM This Month

Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. No vendor patch available.

Samsung Authentication Bypass Samsung Flow
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy