A new security hole on Exynos-powered devices has been discovered that can expose the phone to malicious apps. The exploit found by an XDA Developers forum member gives read and write access to physical memory, which can also be used to root the device without having to flash a kernel via Odin. Devices that are susceptible to this exploit are Galaxy S II, Galaxy S III, Galaxy Note II and basically other devices that are powered by Exynos 4210 and Exynos 4412 SoCs.
Thankfully, developers have already started patching the loophole and it’s a simple APK solution that enables or disables the exploit. As for Samsung’s involvement, Chainfire says the issue has been notified to Samsung engineers and is “being escalated.”