CVE-2024-49412

Name of the Vulnerable Software and Affected Versions Settings versions prior to SMR Dec-2024 Release 1

Description The issue is related to improper input validation in Settings, which allows local attackers to broadcast a signal for discovering Bluetooth on Galaxy Watch. This can be exploited by attackers to potentially gain unauthorized access.

Recommendations For versions prior to SMR Dec-2024 Release 1, update to SMR Dec-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the Settings feature to minimize the risk of exploitation.