CVE-2024-34600

Improper verification of intent by broadcast receiver vulnerability in Samsung Flow prior to version 4.9.13.0 allows local attackers to copy image files to external storage.
Configurations

Configuration 1 (hide)

cpe:2.3:a:samsung:flow:*:*:*:*:*:*:*:*

History

02 Jul 2024, 18:05

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 4.4
v2 : unknown
v3 : 3.3
References () https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=07 - () https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=07 - Vendor Advisory
CPE cpe:2.3:a:samsung:flow:*:*:*:*:*:*:*:*
CWE NVD-CWE-noinfo
First Time Samsung flow
Samsung

02 Jul 2024, 12:09

Type Values Removed Values Added
Summary
  • (es) La verificación inadecuada de la intención mediante la vulnerabilidad del receptor de transmisión en Samsung Flow anterior a la versión 4.9.13.0 permite a atacantes locales copiar archivos de imágenes a un almacenamiento externo.

02 Jul 2024, 10:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-07-02 10:15

Updated : 2024-07-02 18:05


NVD link : CVE-2024-34600

Mitre link : CVE-2024-34600

CVE.ORG link : CVE-2024-34600


JSON object : View

Products Affected

samsung

  • flow