CVE-2025-20971

Improper input validation in Samsung Flow prior to version 4.9.17.6 allows local attackers to access data within Samsung Flow.

CVSS

No CVSS.

References

Link	Resource
https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=05	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:samsung:flow:*:*:*:*:*:*:*:*

History

16 Jul 2025, 19:33

Type	Values Removed	Values Added
CPE		cpe:2.3:a:samsung:flow::::::::
First Time		Samsung flow Samsung
CWE		NVD-CWE-noinfo
References	~~() https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=05 -~~	() https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=05 - Vendor Advisory

07 May 2025, 09:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-07 09:15

Updated : 2025-07-16 19:33

NVD link : CVE-2025-20971

Mitre link : CVE-2025-20971

JSON object : View

Products Affected

samsung

CWE

NVD-CWE-noinfo