One UI
Samsung November 2024 Security Patch Details Revealed: 52 Vulnerabilities Fixed!
Samsung has started rolling out the November 2024 security update, beginning with the Galaxy Tab S7 FE, and plans to expand it to other Galaxy devices soon. As of November 5th, 2024, Samsung has released the details of the latest security patch for its Galaxy devices on the Scope Page.
November 2024 security update brings patches from both Google and Samsung, addressing 52 vulnerabilities and exposures in the Android operating system and Samsung’s software.
Of these, 38 issues are considered high-level by Google, while one CVE doesn’t apply to Galaxy devices. Additionally, Samsung has patched 13 issues mainly related to multiple user profiles, Dex Mode, Galaxy Watch, Settings, and Maintenance Mode. These updates aim to make your Galaxy devices work better and more securely.
Below, you can check more details about the November 2024 security patch for Samsung Galaxy devices.
Samsung November 2024 Security Patch Details
Android Patch Details
Critical
- None
High
- CVE-2024-23369, CVE-2024-34733, CVE-2024-34732, CVE-2024-33049, CVE-2024-40651, CVE-2024-40649, CVE-2024-34748, CVE-2024-38399, CVE-2024-33069, CVE-2024-40670, CVE-2024-40669, CVE-2024-20103, CVE-2024-20094, CVE-2024-20090, CVE-2024-20091, CVE-2024-20092, CVE-2024-20093, CVE-2024-20100, CVE-2024-20101, CVE-2024-40660, CVE-2024-43081, CVE-2024-43085, CVE-2024-43093, CVE-2024-43082, CVE-2024-43084, CVE-2024-43086, CVE-2024-43091, CVE-2024-29779, CVE-2024-34719, CVE-2024-40661, CVE-2024-43080, CVE-2024-43087, CVE-2024-43088, CVE-2024-43089, CVE-2024-43090, CVE-2024-43083, CVE-2024-31330, CVE-2024-38402
Moderate
- None
Already included in previous updates
- None
Not applicable to Samsung devices
- CVE-2024-43094
Samsung Semiconductors patches
High
- CVE-2024-45185
Samsung One UI Patches
- SVE-2024-0956(CVE-2024-34673): Improper input validation in IpcProtocol in Modem
- SVE-2024-1214(CVE-2024-49402): Improper input validation in Dressroom
- SVE-2024-1222(CVE-2024-34674): Improper access control in Contacts
- SVE-2024-1240(CVE-2024-34675): Improper access control in Dex Mode.
- SVE-2024-1481(CVE-2024-34676): Out-of-bounds write in libsubextractor.so
- SVE-2024-1520(CVE-2024-34677): Exposure of sensitive information in System UI
- SVE-2024-1524(CVE-2024-34678): Out-of-bounds write in libsapeextractor.so
- SVE-2024-1643(CVE-2024-34679): Incorrect default permissions in Crane
- SVE-2024-1651(CVE-2024-34680): Use of implicit intent for sensitive communication in WlanTest
- SVE-2024-1666(CVE-2024-34681): Improper input validation in BluetoothAdapter
- SVE-2024-1697(CVE-2024-34682): Improper authorization in Settings
- SVE-2024-1699(CVE-2024-49401): Improper input validation in Settings Suggestions