But...
"However, they responsibly disclosed their findings to Samsung in May 2021, which led to the August 2021 assignment of CVE-2021-25444 to the vulnerability, and a patch for affected devices."
How many devices actually received the patch?? As you well know, in the America most mobes are sold carrier-direct, locked to said carrier and with installed and locked bloatware. Most times it is up to the carrier to approve and forward OS upgrades.