CVE Vulnerabilities

CVE-2025-20972

Published: May 07, 2025 | Modified: Jul 16, 2025
CVSS 3.x
5.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Improper verification of intent by broadcast receiver in Samsung Flow prior to version 4.9.17.6 allows local attackers to modify Samsung Flow configuration.

Affected Software

Name Vendor Start Version End Version
Flow Samsung * 4.9.17.6 (excluding)

References