Samsung Products Multiple Vulnerabilities
RISK: Extremely High Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Samsung products. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass, sensitive information disclosure, denial of service condition, elevation of privilege and remote code execution on the targeted system.
Note:
CVE-2025-38352 and CVE-2025-48543 are being scattered exploited. These vulnerabilities can lead to local escalation of privilege with no additional execution privileges and user interaction needed. There are indications that the vulnerabilities may be under limited, targeted exploitation.
CVE-2025-21043 is being exploited in the wild. This vulnerability allows remote attackers to perform an out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1, leading to arbitrary code execution.
Hence, the risk level is rated as Extremely High Risk.
[Updated on 2025-09-05]
Updated Description.
[Updated on 2025-09-15]
Updated Description, Risk Level, Vulnerability Identifier and Related Links.
Impact
- Remote Code Execution
- Information Disclosure
- Denial of Service
- Elevation of Privilege
- Security Restriction Bypass
System / Technologies affected
- Samsung mobile devices running Android 13, 14, 15, 16
For affected products, please refer to the link below:
https://security.samsungmobile.com/securityUpdate.smsb
Solutions
Before installation of the software, please visit the vendor website for more details.
Apply fixes issued by the vendor:
Vulnerability Identifier
- CVE-2025-21043
- CVE-2023-40130
- CVE-2024-7881
- CVE-2024-47898
- CVE-2024-47899
- CVE-2025-0089
- CVE-2025-0467
- CVE-2025-1246
- CVE-2025-1706
- CVE-2025-3212
- CVE-2025-8109
- CVE-2025-20703
- CVE-2025-20708
- CVE-2025-21025
- CVE-2025-21026
- CVE-2025-21027
- CVE-2025-21028
- CVE-2025-21029
- CVE-2025-21030
- CVE-2025-21031
- CVE-2025-21032
- CVE-2025-21033
- CVE-2025-21034
- CVE-2025-21482
- CVE-2025-021701
- CVE-2025-21755
- CVE-2025-25179
- CVE-2025-25180
- CVE-2025-26447
- CVE-2025-26464
- CVE-2025-27032
- CVE-2025-27034
- CVE-2025-32100
- CVE-2025-32322
- CVE-2025-32323
- CVE-2025-32327
- CVE-2025-38352
- CVE-2025-46707
- CVE-2025-46708
- CVE-2025-46710
- CVE-2025-47326
- CVE-2025-47328
- CVE-2025-47329
- CVE-2025-48524
- CVE-2025-48532
- CVE-2025-48534
- CVE-2025-48535
- CVE-2025-48537
- CVE-2025-48538
- CVE-2025-48539
- CVE-2025-48540
- CVE-2025-48541
- CVE-2025-48542
- CVE-2025-48543
- CVE-2025-48544
- CVE-2025-48545
- CVE-2025-48546
- CVE-2025-48547
- CVE-2025-48548
- CVE-2025-48549
- CVE-2025-48550
- CVE-2025-48551
- CVE-2025-48552
- CVE-2025-48553
- CVE-2025-48554
- CVE-2025-48556
- CVE-2025-48558
- CVE-2025-48559
- CVE-2025-48560
- CVE-2025-48561
- CVE-2025-48562
- CVE-2025-48563
- CVE-2025-48581
Source
Related Link
Related Tags
Share with