CVE-2025-20972
published 2025-05-07CVE-2025-20972: Improper verification of intent by broadcast receiver in Samsung Flow prior to version 4.9.17.6 allows local attackers to modify Samsung Flow configuration.
medium5.5CVSS 3.1
AVLACLPRLUINSUCNIHAN
Improper verification of intent by broadcast receiver in Samsung Flow prior to version 4.9.17.6 allows local attackers to modify Samsung Flow configuration.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | flow | < 4.9.17.6 | 4.9.17.6 |