Vulnerabilities > Samsung > Samsung Flow

DATE CVE VULNERABILITY TITLE RISK
2022-04-11 CVE-2022-28543 Path Traversal vulnerability in Samsung Flow 4.8.03.5/4.8.5.0
Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4 allows local attackers to read arbitrary files as Samsung Flow permission.
local
low complexity
samsung CWE-22
5.5
2022-04-11 CVE-2022-28775 Unspecified vulnerability in Samsung Flow 4.8.03.5/4.8.5.0
Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows attacker to write the file without Samsung Flow permission.
local
low complexity
samsung
3.3
2021-11-05 CVE-2021-25507 Unspecified vulnerability in Samsung Flow
Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization.
low complexity
samsung
5.7
2021-11-05 CVE-2021-25509 Improper Input Validation vulnerability in Samsung Flow
A missing input validation in Samsung Flow Windows application prior to Version 4.8.5.0 allows attackers to overwrite abtraty file in the Windows known folders.
local
low complexity
samsung CWE-20
7.1