- Description
- A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.5, iOS 16.6 and iPadOS 16.6, Safari 16.6, iOS 15.8.7 and iPadOS 15.8.7. Processing maliciously crafted web content may lead to memory corruption.
- Source
- product-security@apple.com
- NVD status
- Analyzed
- Products
- safari, ipados, iphone_os, macos
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
Data from CISA
- Vulnerability name
- Apple Multiple products Use-After-Free Vulnerability
- Exploit added on
- Mar 5, 2026
- Exploit action due
- Mar 26, 2026
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Hype score
- Not currently trending
🚨 [HIGH] Active exploitation detected: CVE-2023-43000 Exploit in the wild confirmed for CVE-2023-43000 (CVSS 8.8). A use-after-free issue was addressed with improved memory management. This issue is fixed... 🔗 https://t.co/RZBhpWnHFz #ZeroDay #ExploitInWild #CyberSecurity
@ctiwatchcloud
11 Apr 2026
57 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🛡️ CVE-2023-43000: Vulnerabilidad Use-After-Free en Productos Apple Explotada Análisis técnico de CVE-2023-43000, una vulnerabilidad de use-after-free en macOS, iOS, iPadOS y Safari que permite corrupción de memoria. Recomendaciones y mit https://t.co/Ap3USJvQfo #ciberpl
@CiberPlanetaOrg
16 Mar 2026
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🛡️ Alerta de Seguridad: Vulnerabilidad Use-After-Free en Múltiples Productos de Apple (CVE-2023-43000) Vulnerabilidad use-after-free (CWE-416) en macOS, iOS, iPadOS y Safari 16.6 de Apple, explotable vía contenido web malicioso que causa corrupción de memoria. CVSS 8.8 (A
@CiberPlanetaOrg
16 Mar 2026
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA KEV 警告 26/03/05:Apple macOS/iOS などにおける複数の脆弱性を登録 https://t.co/F6dGaEVrJp Apple の製品群で発見された深刻な脆弱性は、主にメモリ管理と計算処理の不備に起因するものです。具体的には、CVE-2023-430
@iototsecnews
16 Mar 2026
132 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
"patched .. underlying vulnerabilities in iOS updates .. over .. 2 years .. fixes for users who cannot update ..latest version. Specifically, iOS and iPadOS 15.8.7 patch 4 vulnerabilities: CVE-2023-41974, CVE-2024-23222, CVE-2023-43000, and CVE-2023-43010" https://t.co/xrdMU89
@christinayiotis
14 Mar 2026
124 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISAがCoruna関連のiOS 脆弱性 3件をKEV追加 iOS 13〜17.2.1を狙う23件の攻撃キット対応(CVE-2023-41974,CVE-2021-30952,CVE-2023-43000) https://t.co/bR3T4UgulA #セキュリティ対策Lab #セキュリティ #Security #CybersecurityNews
@securityLab_jp
11 Mar 2026
104 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2021-30952, CVE-2023-41974, CVE-2023-43000: iOS exploits from 2021 still working in 2026. Coruna kit passed hands: US surveillance → state actors → Chinese criminals. Zero-day recycling market is real. Update your iPhones. Please.
@CisoRaging77913
9 Mar 2026
61 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2023-43000: 2 billion Apple devices exposed through Safari. One poisoned link = full access to your data. This isn't theoretical — it's being exploited right now. 🚨 https://t.co/kOPFjwtRUQ
@EdgeDetectOps
7 Mar 2026
62 Impressions
3 Retweets
2 Likes
0 Bookmarks
1 Reply
0 Quotes
CVE-2023-43000: 2 billion Apple devices exposed through Safari. One poisoned link = full access to your data. This isn't theoretical — it's being exploited right now. 🚨 https://t.co/k9DXXn3krg
@EdgeDetectOps
7 Mar 2026
56 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨 BREAKING: CVE-2023-43000 hits Apple's entire ecosystem - macOS, iOS, iPadOS & Safari 16.6. Use-after-free vulnerability allows memory corruption through malicious web content. Added to KEV catalog with mandatory patching deadline.
@EdgeDetectOps
7 Mar 2026
59 Impressions
1 Retweet
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨 CISA ordered U.S. federal agencies to patch three iOS security flaws targeted in cyberespionage and crypto-theft attacks using the Coruna exploit kit. <<<IMPORTANT>>> ⚡️ CVE-2021-30952, CVE-2023-41974, CVE-2023-43000 added to CISA KEV catalog ⚡️ Co
@xkzdb
6 Mar 2026
95 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨Cisco Catalyst SD-WANの脆弱性、さらに2件の悪用が明らかに:CVE-2026-20128、CVE-2026-20122 ⚠️米CISA、Apple製品の古い脆弱性3件をKEVカタログに追加(CVE-2023-43000、CVE-2021-30952、CVE-2023-41974) 〜サイバーアラート3月6日
@MachinaRecord
6 Mar 2026
189 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
米国サイバーセキュリティ・社会基盤安全保障庁(CISA)が既知の悪用された脆弱性カタログに5件の脆弱性を追加。ハイクビジョンのCVE-2017-7921、Rockwell Automation製品のCVE-2021-22681、Apple製品のCVE-2021-30952、CVE-2023-4197
@__kokumoto
5 Mar 2026
822 Impressions
0 Retweets
2 Likes
1 Bookmark
1 Reply
0 Quotes
Latest Known Exploited Vulnerabilities (#KEV) : #CVE-2023-43000 #Apple Multiple products Use-After-Free Vulnerability https://t.co/Czx9oOwRpL
@ScyScan
5 Mar 2026
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2023-43000: HIGH] Memory management flaw fixed in macOS Ventura 13.5, iOS 16.6, and iPadOS 16.6, Safari 16.6. Beware of potential memory corruption risks from malicious web content.#cve,CVE-2023-43000,#cybersecurity https://t.co/1GY25YOH5D https://t.co/ujOS3tskNn
@CveFindCom
5 Nov 2025
102 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2023-43000 is a use-after-free vulnerability discovered in Apple's WebKit, which underpins the Safari browser and other Apple web rendering components. This flaw stems from improper memory management, specifically related to how web content is processed and rendered.
@CveTodo
5 Nov 2025
48 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2023-43000 A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.5, iOS 16.6 and iPadOS 16.6, Safari 16.6. Processing mal… https://t.co/hke65TKr5M
@CVEnew
5 Nov 2025
253 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DB91291B-DB98-4E2A-BDA6-F9B5C48CDC6F",
"versionEndExcluding": "16.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1E574928-4E49-45B0-AE6E-DF4D38897F67",
"versionEndExcluding": "15.8.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"matchCriteriaId": "33013784-1828-4402-81CF-2794D94A7C48",
"versionEndExcluding": "16.6",
"versionStartIncluding": "16.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D1E9DC1A-618A-4CAF-96C7-EC5BA2C1F617",
"versionEndExcluding": "15.8.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4C67BFEB-764A-4C07-A02A-117C6AFAAC6A",
"versionEndExcluding": "16.6",
"versionStartIncluding": "16.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7FB2CB0B-A635-4057-98B8-AF71F9CB0171",
"versionEndExcluding": "13.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]