Samsung Issues Urgent Security Update to Patch Zero-Day Flaw Exploited in the Wild
On September 17, 2025, Samsung issued a critical security update to patch a zero-day vulnerability that has been exploited in the wild. The update addresses a flaw tracked as CVE-2025-21043, which affects all impacted phone models and allows remote attackers to execute arbitrary code.
According to Samsung Mobile, the vulnerability is an "out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1." The company's security team has been working closely with Meta and WhatsApp security teams, who privately disclosed the critical vulnerability on August 1.
The update is available for immediate download and installation on affected devices. Samsung urges users to accept the security updates as soon as they become available.
"We take the security of our customers' data very seriously," said a spokesperson for Samsung. "This update is essential in protecting against ongoing attacks in the wild, and we recommend that all impacted phone models receive the fix as soon as possible."
The vulnerability has been described as critical by Samsung Mobile, with a base score of 8.8. The company's security team has confirmed that the flaw affects all impacted phone models and has provided detailed instructions on how to install the update.
In related news, experts have emphasized the importance of keeping devices up-to-date with the latest security patches. "This vulnerability is a stark reminder of the need for users to stay vigilant and keep their devices secure," said a cybersecurity expert. "We recommend that all Samsung users prioritize installing this update as soon as possible."
The update is part of Samsung's ongoing efforts to improve the security of its Android smartphone ecosystem. The company has been working closely with industry partners and security experts to identify and address vulnerabilities in its products.
As of now, the update is available for immediate download on affected devices. Users are advised to check their device settings for any available updates and install them as soon as possible.
In conclusion, Samsung's urgent security update aims to patch a critical zero-day flaw that has been exploited in the wild. The company urges all impacted phone model users to accept the security updates immediately to protect against ongoing attacks.
*Reporting by Zdnet.*
Update your Samsung phone ASAP to patch this zero-day flaw exploited in the wild
1
0
