Tech Desk 
Sep 15, 2025
Samsung has issued a warning that hackers are targeting its Galaxy smartphones by taking advantage of a serious flaw in Android 13 and later versions.
To fix the problem, which impacts a variety of Galaxy devices, the company has issued a security update.
An image-parsing library has a memory flaw known as CVE-2025-21043 that enables attackers to execute malicious code remotely. However, WhatsApp is thought to be a possible point of entry for the assault.
Zimperium, a leading mobile security platform, said its Sales Engineer Director, Brian Thornton, remarked, “This zero-day demonstrates just how quickly attackers are switching to mobile as their method of entry.”
An "out-of-bounds write in libimagecodec.quram", a third-party image handling program, was the cause of the risk, according to Samsung.
The flaw, which impacts Android 13, 14, 15, and 16, was made public on August 13.
"Both Samsung and WhatsApp have released patches to address this issue," Black Duck's Sr Staff Consultant Nivedita Murthy confirmed, highlighting the critical severity rating.
However, many Galaxy users will be at risk because Samsung will implement the fix gradually.
Apple, on the other hand, has the ability to simultaneously roll out updates all over the world.
Samsung's update strategy may be impacted by Google's recent announcement of a new monthly security update strategy that prioritises only critical fixes.
To stay safe, Samsung advises users to update and restart their phones as soon as possible.
The fix will be available to you as long as your device is on Samsung's monthly update schedule. To protect your device, make sure to install the update as soon as possible.
