cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-49407,https://securityvulnerability.io/vulnerability/CVE-2024-49407,Samsung Flow Vulnerability Allows Physical Attackers to Access Data Across Multiple User Profiles,Improper access control in Samsung Flow prior to version 4.9.15.7 allows physical attackers to access data across multiple user profiles.,Samsung,Samsung Flow,4.6,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2024-11-06T02:17:25.616Z,0
CVE-2023-21443,https://securityvulnerability.io/vulnerability/CVE-2023-21443,Improper Cryptographic Implementation in Samsung Flow for Android,"An improper cryptographic implementation in Samsung Flow for Android versions prior to 4.9.04 can expose serious security risks. This vulnerability allows adjacent attackers the potential to decrypt encrypted messages, raising concerns about the confidentiality of sensitive information. Moreover, these attackers may exploit this weakness to inject arbitrary commands, which could lead to further unauthorized actions within the application. Users of affected versions are urged to upgrade to the latest version to mitigate these risks.",Samsung,Samsung Flow for Android,8.8,HIGH,0.0005799999926239252,false,,false,false,false,,,false,false,,2023-02-09T00:00:00.000Z,0
CVE-2023-21444,https://securityvulnerability.io/vulnerability/CVE-2023-21444,Improper Cryptographic Implementation in Samsung Flow for PC,"An improper cryptographic implementation in Samsung Flow for PC version 4.9.14.0 enables adjacent attackers to potentially decrypt sensitive encrypted messages or inject arbitrary commands. This flaw exposes users to significant security risks, allowing unauthorized access to confidential communication.",Samsung,Samsung Flow for PC,8.8,HIGH,0.0005799999926239252,false,,false,false,false,,,false,false,,2023-02-09T00:00:00.000Z,0
CVE-2022-28775,https://securityvulnerability.io/vulnerability/CVE-2022-28775,Improper Access Control in Samsung Flow by Samsung,"An improper access control vulnerability exists in Samsung Flow, prior to version 4.8.06.5, that allows an unauthorized attacker to write files without obtaining the necessary permissions from the application. This flaw raises significant security concerns, as it may enable an attacker to manipulate files and potentially compromise user data. Users are advised to update to the latest version to mitigate this risk.",Samsung,Samsung Flow,5.1,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-04-11T19:37:42.000Z,0
CVE-2022-28543,https://securityvulnerability.io/vulnerability/CVE-2022-28543,Path Traversal Vulnerability in Samsung Flow Before Version 4.8.07.4,"A path traversal vulnerability exists in Samsung Flow that allows local attackers to access and read arbitrary files on the system with the same permissions as the application, potentially exposing sensitive information. This flaw affects versions of Samsung Flow prior to 4.8.07.4, posing a risk to users who have not updated their software.",Samsung,Samsung Flow,4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-04-11T19:37:36.000Z,0
CVE-2021-25509,https://securityvulnerability.io/vulnerability/CVE-2021-25509,Missing Input Validation in Samsung Flow Windows Application,"The Samsung Flow Windows application prior to Version 4.8.5.0 suffers from a serious flaw due to missing input validation, enabling malicious actors to overwrite arbitrary files in known Windows folders. This vulnerability poses significant security risks, as it allows unauthorized modification of files that could lead to data loss or compromise system integrity. Users are advised to promptly update their applications to mitigate potential threats.",Samsung,Samsung Flow,5.9,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-11-05T02:04:17.000Z,0
CVE-2021-25507,https://securityvulnerability.io/vulnerability/CVE-2021-25507,Improper Authorization in Samsung Flow Mobile Application,"An improper authorization issue exists in the Samsung Flow mobile application, impacting versions prior to 4.8.03.5. This vulnerability allows the associated Samsung Flow PC application to access notification data within the Secure Folder of a connected user device without proper authorization, potentially exposing sensitive information to unauthorized access.",Samsung,Samsung Flow,5.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-11-05T02:04:03.000Z,0