Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.8
Apple iOS and iPadOS: Malicious Apps Can Steal Data
Known exploited
CVE-2023-41974
CVE-2023-41974
Summary
A security flaw in Apple's iOS and iPadOS allows a malicious app to potentially take control of your device. This can lead to sensitive information being stolen or system data being manipulated. Apple will likely release a security update to fix this issue, so it's essential to keep your device up to date.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| apple | ios and ipados | All versions | – |
| apple | ipados | <= 17.0 | – |
| apple | iphone_os | <= 17.0 | – |
| apple | ipados | <= 15.8.7 | – |
| apple | ipados | > 16.0 , <= 17.0 | – |
| apple | iphone_os | <= 15.8.7 | – |
| apple | iphone_os | > 16.0 , <= 17.0 | – |
Original title
Apple iOS and iPadOS Use-After-Free Vulnerability
Original description
Apple iOS and iPadOS contain a use-after-free vulnerability. An app may be able to execute arbitrary code with kernel privileges.
Vulnerability type
CWE-416
Use After Free
- https://support.apple.com/en-us/HT213938 Release Notes Vendor Advisory
- https://support.apple.com/kb/HT213938 Release Notes Vendor Advisory
- https://cloud.google.com/blog/topics/threat-intelligence/coruna-powerful-ios-exp... Exploit Third Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-... US Government Resource
- https://support.apple.com/en-us/120949
- https://support.apple.com/en-us/126632
Published: 5 Mar 2026 · Updated: 14 Mar 2026 · First seen: 6 Mar 2026