Every CVE whose affected-product data names Samsung Flow, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2023-21443 — CVSS 7.5 (high): Improper cryptographic implementation in Samsung Flow for Android prior to version 4.9.04 allows adjacent attackers to decrypt encrypted…
CVE-2023-21444 — CVSS 7.5 (high): Improper cryptographic implementation in Samsung Flow for PC 4.9.14.0 allows adjacent attackers to decrypt encrypted messages or inject…
CVE-2025-20972 — CVSS 6.2 (medium): Improper verification of intent by broadcast receiver in Samsung Flow prior to version 4.9.17.6 allows local attackers to modify Samsung…
CVE-2025-20971 — CVSS 5.5 (medium): Improper input validation in Samsung Flow prior to version 4.9.17.6 allows local attackers to access data within Samsung Flow.
CVE-2024-49407 — CVSS 4.6 (medium): Improper access control in Samsung Flow prior to version 4.9.15.7 allows physical attackers to access data across multiple user profiles.
CVE-2024-34600 — CVSS 4.4 (medium): Improper verification of intent by broadcast receiver vulnerability in Samsung Flow prior to version 4.9.13.0 allows local attackers to…