- Description
- A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.5, iOS 16.6 and iPadOS 16.6, Safari 16.6. Processing maliciously crafted web content may lead to memory corruption.
- Source
- product-security@apple.com
- NVD status
- Modified
- Products
- safari, ipados, iphone_os, macos
CVSS 3.1
- Type
- Secondary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
Data from CISA
- Vulnerability name
- Apple Multiple products Use-After-Free Vulnerability
- Exploit added on
- Mar 5, 2026
- Exploit action due
- Mar 26, 2026
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-416
- Hype score
- Not currently trending
Latest Known Exploited Vulnerabilities (#KEV) : #CVE-2023-43000 #Apple Multiple products Use-After-Free Vulnerability https://t.co/Czx9oOwRpL
@ScyScan
5 Mar 2026
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2023-43000: HIGH] Memory management flaw fixed in macOS Ventura 13.5, iOS 16.6, and iPadOS 16.6, Safari 16.6. Beware of potential memory corruption risks from malicious web content.#cve,CVE-2023-43000,#cybersecurity https://t.co/1GY25YOH5D https://t.co/ujOS3tskNn
@CveFindCom
5 Nov 2025
102 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2023-43000 is a use-after-free vulnerability discovered in Apple's WebKit, which underpins the Safari browser and other Apple web rendering components. This flaw stems from improper memory management, specifically related to how web content is processed and rendered.
@CveTodo
5 Nov 2025
48 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2023-43000 A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.5, iOS 16.6 and iPadOS 16.6, Safari 16.6. Processing mal… https://t.co/hke65TKr5M
@CVEnew
5 Nov 2025
253 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DB91291B-DB98-4E2A-BDA6-F9B5C48CDC6F",
"versionEndExcluding": "16.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F362BEC4-90C7-4305-BFF9-645FE6C52DFE",
"versionEndExcluding": "16.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DB63BAC2-C756-428C-8BAC-BAD39FBE5EF4",
"versionEndExcluding": "16.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7FB2CB0B-A635-4057-98B8-AF71F9CB0171",
"versionEndExcluding": "13.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]