Samsung Patches Critical Zero-Day Vulnerability in Latest Security Update

Samsung has released its monthly security updates for Android, addressing a critical vulnerability, CVE-2025-21043, which has been actively exploited in real-world attacks. This vulnerability, with a severity score of 8.8, involves an out-of-bounds write issue in the libimagecodec.quram.so software, allowing attackers to execute arbitrary code. The flaw, affecting Android versions 13 through 16, was privately reported to Samsung on August 13, 2025, and has since been patched.

The libimagecodec.quram.so is a closed-source image file reading tool developed by Quramsoft, as noted by Google Project Zero in 2020. While Samsung has not disclosed specifics about the attacks or the perpetrators, they confirmed the existence of an exploit for this issue.

This update follows Google's recent fixes for two other Android vulnerabilities, CVE-2025-38352 and CVE-2025-48543, which were also being exploited in targeted attacks.

Stay secure — stay Wavasec. 🔐