Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Apple Products: Memory Corruption from Malicious Web Content
Known exploited
CVE-2023-43000
CVE-2023-43000
Summary
Vulnerable software includes macOS, iOS, iPadOS, and Safari. Attackers can create malicious web content that might corrupt memory, potentially leading to crashes or other security issues. Update to the latest version of your Apple software to protect your devices.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| apple | multiple products | All versions | – |
| apple | safari | <= 16.6 | – |
| apple | ipados | <= 16.6 | – |
| apple | iphone_os | <= 16.6 | – |
| apple | macos | <= 13.5 | – |
| apple | ipados | <= 15.8.7 | – |
| apple | ipados | > 16.0 , <= 16.6 | – |
| apple | iphone_os | <= 15.8.7 | – |
| apple | iphone_os | > 16.0 , <= 16.6 | – |
Original title
Apple Multiple products Use-After-Free Vulnerability
Original description
Apple macOS, iOS, iPadOS, and Safari 16.6 contain a use-after-free vulnerability due to the processing of maliciously crafted web content that may lead to memory corruption.
Vulnerability type
CWE-416
Use After Free
- https://support.apple.com/en-us/120324 Release Notes Vendor Advisory
- https://support.apple.com/en-us/120331 Release Notes Vendor Advisory
- https://support.apple.com/en-us/120338 Release Notes Vendor Advisory
- https://cloud.google.com/blog/topics/threat-intelligence/coruna-powerful-ios-exp... Exploit Third Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-... US Government Resource
- https://support.apple.com/en-us/126632
Published: 5 Mar 2026 · Updated: 14 Mar 2026 · First seen: 6 Mar 2026