CVE-2025-20972

Name of the Vulnerable Software and Affected Versions Samsung Flow versions prior to 4.9.17.6

Description The issue is related to improper verification of intent by a broadcast receiver, allowing local attackers to modify the configuration. This could potentially lead to unauthorized changes in the Samsung Flow setup.

Recommendations For versions prior to 4.9.17.6, update to version 4.9.17.6 or later to resolve the issue. As a temporary workaround, consider restricting access to the broadcast receiver to minimize the risk of exploitation.