Memory Corruption in iOS and macOS Devices by Apple
CVE-2023-43010

8.8HIGH

Key Information:

Vendor

Apple
Status
iOS And iPad OS
Safari
Mac OS
Vendor
CVE Published:
12 March 2026

Badges

πŸ“ˆ Score: 503πŸ‘Ύ Exploit ExistsπŸ“° News Worthy

What is CVE-2023-43010?

CVE-2023-43010 is a significant vulnerability found in Apple's iOS and macOS operating systems, specifically impacting devices running these software platforms. The vulnerability stems from issues related to memory handling, which, when exploited, allows attackers to process maliciously crafted web content that may lead to memory corruption. This kind of flaw not only threatens the integrity of the system but also raises concerns about user data security and privacy. Affected versions include iOS 17.2, iPadOS 17.2, macOS Sonoma 14.2, Safari 17.2, and older iterations of the operating system. Given the widespread use of Apple devices in both personal and organizational environments, this vulnerability can have far-reaching consequences for any enterprise reliant on these technologies.

Potential impact of CVE-2023-43010

  1. Data Breaches: The memory corruption that occurs due to this vulnerability can enable attackers to gain unauthorized access to sensitive information stored on Apple devices, leading to potential data breaches.

  2. System Compromise: Exploitation of this vulnerability could allow attackers to gain control over affected systems, leading to further malicious activities such as the installation of malware or unauthorized modifications to system settings.

  3. Operational Disruption: Organizations may face significant operational disruptions as a result of compromised devices, requiring urgent remediation efforts and potentially leading to downtime or loss of productivity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

iOS and iPadOS < 17.2

iOS and iPadOS < 16.7.15

iOS and iPadOS < 15.8.7

News Articles

favicon imageThe Hacker News

Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit

Apple backports CVE-2023-43010 WebKit fix after Coruna exploit kit abused iOS flaws, protecting older iPhones and iPads from memory corruption attacks

5 days ago

References

https://support.apple.com/en-us/120877
https://support.apple.com/en-us/120300
https://support.apple.com/en-us/120879

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • πŸ‘Ύ

    Exploit known to exist

  • πŸ“°

    First article discovered by The Hacker News

  • Vulnerability published

  • Vulnerability Reserved

JSON
.