CVE-2021-25507

Summary

Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows Samsung Flow PC application connected with user device to access part of notification data in Secure Folder without authorization.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Flow- < 4.8.03.5affected

Weaknesses

  • CWE-285: CWE-285 Improper Authorization

ADP Enrichment

CVE Program Container

Additional References

References