CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-21042

Out-of-bounds write in libimagecodec.quram.so prior to SMR Apr-2025 Release 1 allows remote attackers to execute arbitrary code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.031

EPSS Ranking 86.4%

CVSS Severity

CVSS v3 Score 8.8

Proposed Action

Samsung mobile devices contain an out-of-bounds write vulnerability in libimagecodec.quram.so. This vulnerability could allow remote attackers to execute arbitrary code.

Ransomware Campaign

Unknown

References

https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=04
https://unit42.paloaltonetworks.com/landfall-is-new-commercial-grade-android-spyware/
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-21042

Products affected by CVE-2025-21042

Samsung » Android » Version: 13.0

cpe:2.3:o:samsung:android:13.0
Samsung » Android » Version: 14.0

cpe:2.3:o:samsung:android:14.0
Samsung » Android » Version: 15.0

cpe:2.3:o:samsung:android:15.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-21042

Products

Pricing

Contact Us