Sabrina Ortiz/ZDNET
Follow ZDNET: Add us as a preferred source on Google.
ZDNET's key takeaways
Samsung issued a patch for a zero-day vulnerability.
Android devices are affected by ongoing attacks in the wild.
Samsung users should accept security updates immediately.
Samsung has issued a patch to resolve a critical vulnerability impacting its Android smartphone users.
All impacted phone models will receive the fix, which patches a vulnerability tracked as CVE-2025-21043. The security flaw, issued a critical base score of 8.8 by Samsung Mobile (a CNA), is described as an "out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to execute arbitrary code."
Also: Your Android phone's most powerful security feature is hidden and off by default - turn it on now
The critical vulnerability was privately disclosed by Meta and WhatsApp security teams on August 13, 2025. The South Korean tech giant was also informed that an exploit for this bug exists in the wild.
... continue reading