CVE-2024-49412
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2024-49412 is a vulnerability affecting the Settings component of Samsung Galaxy Watches before the SMR Dec-2024 Release 1. This issue involves improper input validation, allowing local attackers to broadcast signals and induce Bluetooth discovery, potentially leading to unauthorized access or information disclosure. This vulnerability may pose a security risk, as attackers can discover nearby devices without proper authorization. The impact is limited to the affected Bluetooth functionality on the Galaxy Watch. Users are encouraged to apply the SMR Dec-2024 Release 1 patch to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.