CVE-2025-21043 - PatchNow

Data Source: CIRCL

Confidence: HIGH

Exploitation Method: USER_INTERACTION

CVE Published: 2025-09-12

Added to CISA KEV: 2025-10-02 20 DAYS BETWEEN CVE AND KEV

⚠️ CRITICAL: Check for indicators of compromise - this vulnerability is in CISA KEV indicating active exploitation in the wild. Review logs, check for unauthorized access, verify system integrity before patching
Apply Samsung SMR Sep-2025 security update immediately on affected devices
Monitor for suspicious image files or links, especially through messaging applications
Medium patch priority for enterprise mobile device management

CVE-2025-21043 Detail - NVD
Out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to execute arbitrary code. Metrics. CVSS ...
CVE-2025-21043 Security Vulnerability & Exploit Details
CVE-2025-21043 - Out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to execute arbitrary code.
Samsung Patches Zero-Day Exploited Against Android Users
The timing of the report and the fact that the Samsung zero-day was in a core image library suggests that CVE-2025-21043 might have been exploited in attacks targeting WhatsApp users, just as was CVE-2025-43300, an out-of-bounds write issue in the ImageIO framework component of iOS, iPadOS, and macOS.
Samsung Fixes Critical Zero-Day CVE-2025-21043 ...
Samsung patched CVE-2025-21043 on Sep 2025 after zero-day Android exploits enabled code execution.
CISA Sounds Alarm on Critical Sudo Flaw Actively Exploited in Linux and ...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical security flaw impacting the Sudo command-line utility for Linux and Unix-like operating systems to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerability in question is CVE-2025-32463 (CVSS score: 9.3), which affects Sudo versions prior ...

🟢 CVE-2025-21043