Samsung Flow <4.9.13.0 Broadcast Receiver Intent Verification Flaw Copies Images
CVE-2024-34600 Published on July 2, 2024
Improper verification of intent by broadcast receiver vulnerability in Samsung Flow prior to version 4.9.13.0 allows local attackers to copy image files to external storage.
Vulnerability Analysis
CVE-2024-34600 is exploitable with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality, a small impact on integrity, and a small impact on availability.
Products Associated with CVE-2024-34600
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2024-34600 are published in these products:
Affected Versions
Samsung Mobile Samsung Flow Version 4.9.13.0 is unaffected by CVE-2024-34600Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.