CVE-2025-21043

Name of the Vulnerable Software and Affected Versions Samsung devices running Android versions 13 through 16

Description A critical zero-day vulnerability (CVE-2025-21043) exists in the libimagecodec.quram.so library, which handles image processing. This out-of-bounds write flaw allows remote attackers to execute arbitrary code on vulnerable devices by processing specially crafted images. The vulnerability was actively exploited in attacks, with reports indicating it was used in attacks targeting WhatsApp users. Approximately 3.9 billion Android devices are estimated to be in use worldwide, making a large number of users potentially at risk. The vulnerability was reported by Meta and WhatsApp security teams. The flaw resides in the

parse

function within the QuramDngOpcodeList class.

Recommendations Update Samsung devices running Android 13 through 16 to the September 2025 Security Maintenance Release 1.