Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samsung samsung flow vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-21443
Improper cryptographic implementation in Samsung Flow for Android prior to version 4.9.04 allows adjacent malicious users to decrypt encrypted messages or inject commands.
Samsung Flow
NA
CVE-2023-21444
Improper cryptographic implementation in Samsung Flow for PC 4.9.14.0 allows adjacent malicious users to decrypt encrypted messages or inject commands.
Samsung Flow
2.1
CVSSv2
CVE-2022-28543
Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4 allows local malicious users to read arbitrary files as Samsung Flow permission.
Samsung Samsung Flow
2.1
CVSSv2
CVE-2022-28775
Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows malicious user to write the file without Samsung Flow permission.
Samsung Samsung Flow
3.6
CVSSv2
CVE-2021-25509
A missing input validation in Samsung Flow Windows application prior to Version 4.8.5.0 allows malicious users to overwrite abtraty file in the Windows known folders.
Samsung Samsung Flow
2.7
CVSSv2
CVE-2021-25507
Improper authorization vulnerability in Samsung Flow mobile application before 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization.
Samsung Samsung Flow
9.3
CVSSv2
CVE-2020-11896
The Treck TCP/IP stack prior to 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling.
Treck Tcp\\/ip
3 Github repositories
1 Article
6.4
CVSSv2
CVE-2020-11898
The Treck TCP/IP stack prior to 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote malicious users to trigger an information leak.
Treck Tcp\\/ip
1 Github repository
1 Article
6.4
CVSSv2
CVE-2020-11900
The Treck TCP/IP stack prior to 6.0.1.41 has an IPv4 tunneling Double Free.
Treck Tcp\\/ip
9.3
CVSSv2
CVE-2020-11901
The Treck TCP/IP stack prior to 6.0.1.66 allows Remote Code execution via a single invalid DNS response.
Treck Tcp\\/ip
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »