![\"Samsung](\"https:\/\/www.europesays.com\/ie\/wp-content\/uploads\/2025\/10\/1759918632_189_960x0.jpg\")
<\/p>\n<\/p>\n
Do not miss this deadline<\/p>\n
NurPhoto via Getty Images<\/p>\n
Samsung\u2019s warning that Galaxy phones are under attack has taken a new twist. The Galaxy-maker issued an emergency update<\/a> last month for all eligible phones, telling users it \u201cwas notified that an exploit for this issue has existed in the wild.\u201d <\/p>\n Now the U.S. government has issued a new warning for federal staff to update or stop using Galaxy phones by Oct. 23. There was a huge three-week gap between Samsung\u2019s<\/a> and CISA\u2019s<\/a> warnings. But this clearly highlights the seriousness of the vulnerability.<\/p>\n CVE-2025-21043 affects WhatsApp running on Galaxy phones, in much the same way as CVE-2025-55177<\/a> does for iPhones. Given the more than 3 billion strong user base, it\u2019s safe to assume almost all Galaxy phones have Meta\u2019s messenger installed.<\/p>\n ForbesGoogle Starts Scanning Videos On Your Phone\u2014How To Stop ItBy Zak Doffman<\/a><\/p>\n CISA warns that \u201cSamsung mobile devices contain an out-of-bounds write vulnerability in libimagecodec.quram.so which allows remote attackers to execute arbitrary code,\u201d telling government staff to install the update \u201cor discontinue use of the product.\u201d<\/p>\n CISA\u2019s mandate applies to federal agency staff but it operates \u201cfor the benefit of the cybersecurity community and network defenders \u2014 and to help every organization better manage vulnerabilities and keep pace with threat activity.\u201d<\/p>\n This specific Samsung vulnerability affects an image-parsing library on phones, enabling attackers to run malicious code remotely. It\u2019s the latest in a run of media related vulnerabilities targeting both Android and iPhone devices.<\/p>\n According to Zimperium\u2019s Brian Thornton, this zero-day “shows just how fast attackers are shifting to mobile as their way in. In this case, a closed-source image library created a broad risk across Samsung devices and the apps that depend on it.\u201d<\/p>\n While CVE-2025-21043 was patched in Samsung\u2019s September monthly release, the Galaxy maker has just issued its October update. Updating to the latest available OS update will apply all fixed and ensure you phone is completely up-to-date.<\/p>\n There are no critical fixes in October and no further attack warnings, but there are several high-severity flaws, both for Android in general and Samsung in particular, and so all Galaxy owners are urged to install this new update as soon as it\u2019s available, even if they have already applied September\u2019s critical fix.<\/p>\n ForbesSamsung Issues \u2018Final Update\u2019 For Millions Of Galaxy SmartphonesBy Zak Doffman<\/a><\/p>\n Timely security updates prove a challenge for Samsung, given its weeks-long process to apply patches across its vast array of models, regions and carriers. There is some hope that Google\u2019s shift to quarterly omni-updates<\/a> with just critical fixed in between will help address this. We will know more over the coming months.<\/p>\n