Samsung flow is an application for Samsung (Samsung) mobile devices, a software used to connect Samsung to Win10 computers for a seamless, secure, and connected experience. path traversal vulnerability exists in versions prior to Samsung Flow 4.8.07.4, which stems from the lack of proper permission validation logic in Samsung Flow, and can be exploited by local attackers to The vulnerability is caused by the lack of proper Samsung Flow permission validation logic, which can be exploited by local attackers to read arbitrary files based on Samsung Flow permissions.