Samsung Fixes Image Parsing Vulnerability Exploited in Android Attacks

Samsung patched CVE-2025-21043, a critical flaw in its Android devices exploited in live attacks. Users urged to install September 2025 update.

Samsung has patched a serious security vulnerability that hackers were already using in live attacks against its Android devices. The issue, tracked as CVE-2025-21043, was first reported in August 2025 by the security teams at Meta and WhatsApp and has since been confirmed as a critical remote code execution vulnerability.

According to Samsung, the vulnerability was found in libimagecodec.quram.so, a closed-source image parsing library created by Quramsoft, a software company in Yongin, South Korea.

The vulnerability, an out-of-bounds write weakness, gave attackers a way to push malicious code onto vulnerable devices by sending specially prepared image files. In practice, this means that a user could be compromised without knowingly opening or downloading anything suspicious.

While Samsung did not confirm whether attackers were only targeting WhatsApp users, the ...