One UI

Samsung November 2024 Security Patch Details Revealed: 52 Vulnerabilities Fixed!

Published

2 weeks ago

on

Samsung has started rolling out the November 2024 security update, beginning with the Galaxy Tab S7 FE, and plans to expand it to other Galaxy devices soon. As of November 5th, 2024, Samsung has released the details of the latest security patch for its Galaxy devices on the Scope Page.

November 2024 security update brings patches from both Google and Samsung, addressing 52 vulnerabilities and exposures in the Android operating system and Samsung’s software.

Of these, 38 issues are considered high-level by Google, while one CVE doesn’t apply to Galaxy devices. Additionally, Samsung has patched 13 issues mainly related to multiple user profiles, Dex Mode, Galaxy Watch, Settings, and Maintenance Mode. These updates aim to make your Galaxy devices work better and more securely.

Below, you can check more details about the November 2024 security patch for Samsung Galaxy devices.

Samsung November 2024 Security Patch Details

Android Patch Details

Critical

  • None

High

  • CVE-2024-23369, CVE-2024-34733, CVE-2024-34732, CVE-2024-33049, CVE-2024-40651, CVE-2024-40649, CVE-2024-34748, CVE-2024-38399, CVE-2024-33069, CVE-2024-40670, CVE-2024-40669, CVE-2024-20103, CVE-2024-20094, CVE-2024-20090, CVE-2024-20091, CVE-2024-20092, CVE-2024-20093, CVE-2024-20100, CVE-2024-20101, CVE-2024-40660, CVE-2024-43081, CVE-2024-43085, CVE-2024-43093, CVE-2024-43082, CVE-2024-43084, CVE-2024-43086, CVE-2024-43091, CVE-2024-29779, CVE-2024-34719, CVE-2024-40661, CVE-2024-43080, CVE-2024-43087, CVE-2024-43088, CVE-2024-43089, CVE-2024-43090, CVE-2024-43083, CVE-2024-31330, CVE-2024-38402

Moderate

  • None

Already included in previous updates

  • None

Not applicable to Samsung devices

  • CVE-2024-43094

Samsung Semiconductors patches

High

  • CVE-2024-45185

Samsung One UI Patches

  • SVE-2024-0956(CVE-2024-34673): Improper input validation in IpcProtocol in Modem
  • SVE-2024-1214(CVE-2024-49402): Improper input validation in Dressroom
  • SVE-2024-1222(CVE-2024-34674): Improper access control in Contacts
  • SVE-2024-1240(CVE-2024-34675): Improper access control in Dex Mode.
  • SVE-2024-1481(CVE-2024-34676): Out-of-bounds write in libsubextractor.so
  • SVE-2024-1520(CVE-2024-34677): Exposure of sensitive information in System UI
  • SVE-2024-1524(CVE-2024-34678): Out-of-bounds write in libsapeextractor.so
  • SVE-2024-1643(CVE-2024-34679): Incorrect default permissions in Crane
  • SVE-2024-1651(CVE-2024-34680): Use of implicit intent for sensitive communication in WlanTest
  • SVE-2024-1666(CVE-2024-34681): Improper input validation in BluetoothAdapter
  • SVE-2024-1697(CVE-2024-34682): Improper authorization in Settings
  • SVE-2024-1699(CVE-2024-49401): Improper input validation in Settings Suggestions

Is Samsung’s One UI 7 Beta arriving this November?
Related Topics:
Exit mobile version