CVE-2023-43010

Published Mar 12, 2026

Last updated 17 hours ago

CVSS high 8.8
iOS
macOS Sonoma
Safari

Overview

Description
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.2 and iPadOS 17.2, macOS Sonoma 14.2, Safari 17.2, iOS 16.7.15 and iPadOS 16.7.15, iOS 15.8.7 and iPadOS 15.8.7. Processing maliciously crafted web content may lead to memory corruption.
Source
product-security@apple.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.8
Impact score
5.9
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity
HIGH

Social media

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score

4

  1. 🚨 Apple Security Update for Older Devices Apple released patches for older iPhones and iPads to fix a WebKit flaw (CVE-2023-43010) linked to the Coruna exploit kit. Update your devices to stay protected. 🔗 https://t.co/ITb26N79QH #CyberSecurity #AppleSecurity #iOSUpdate

    @techpio_team

    13 Mar 2026

    42 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Apple has released security updates for older iOS and iPadOS versions to address CVE-2023-43010, a WebKit vulnerability exploited by the Coruna exploit kit. The updates include fixes for iOS 15.8.7 and iPadOS 15.8. https://t.co/yrLZ2SaSQq

    @securityRSS

    13 Mar 2026

    66 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Apple on Wednesday backported fixes for a security flaw in iOS, iPadOS, and macOS Sonoma to older versions after it was found to be used as part of the Coruna exploit kit. The vulnerability, tracked as CVE-2023-43010, relates to an unspecified v... #News https://t.co/zLzX3gDNqV

    @PostGoo_News

    13 Mar 2026

    48 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Top 5 Trending CVEs: 1 - CVE-2026-20127 2 - CVE-2023-43010 3 - CVE-2026-21385 4 - CVE-2025-68613 5 - CVE-2026-25185 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    13 Mar 2026

    200 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Apple backports iOS 17.2 fixes for Coruna exploit kit's CVE-2023-43010 WebKit flaw, tied to L3Harris and Russian Operation Zero, reusing 2023's Operation Triangulation exploits, reports Thehackernews. Source: https://t.co/VTz7B9ggc8 https://t.co/WDKHTQVOxw

    @LLMTalksTech

    13 Mar 2026

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. 🚨 Apple Security Alert The Coruna WebKit exploit (CVE-2023-43010) targets older iPhones. 📱 iPhone 6s, 7, SE, 8 & X 🔐 Update to iOS 15.8.7 or iOS 16.7.15 Security tip from VaultEdge IT: Keep devices updated to reduce cyber risks. #CyberSecurity #AppleSecurity #Vau

    @VaultEdgeITMSP

    12 Mar 2026

    93 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  7. 🚨 Apple Security Alert Older iPhones targeted by the Coruna WebKit exploit (CVE-2023-43010). 📱 iPhone 6s, 7, SE, 8 & X affected 🔐 Update to iOS 15.8.7 or iOS 16.7.15 Always keep devices updated to stay protected. #CyberSecurity #Apple #iOS #TechNews https://t.co/

    @dalbeirthakur

    12 Mar 2026

    93 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  8. Apple liberó actualizaciones de seguridad para versiones antiguas de iOS y iPadOS tras identificarse el uso de la vulnerabilidad CVE-2023-43010 dentro del kit de explotación Coruna, que permite corrupción de memoria al procesar contenido web malicioso. Los parches se extendier

    @tpx_Security

    12 Mar 2026

    84 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. Appleが古いiOSへのセキュリティ更新を配信。WebKitの脆弱性CVE-2023-43010への対応のため。攻撃ツールCorunaに悪用されていたもの。脆弱性開示当初はiOS17向けの修正だったが、iOS15/16でも修正。 https://t.co/SkroE8xsrp

    @__kokumoto

    12 Mar 2026

    853 Impressions

    2 Retweets

    5 Likes

    2 Bookmarks

    1 Reply

    0 Quotes

  10. Apple backports fixes for CVE-2023-43010 on iOS/iPadOS/macOS Sonoma. Protect your devices from exploitation! 🛡️ #Cybersecurity #InfoSec #Vulnerability https://t.co/w1IzNHyLiA

    @cyberwatcher_

    12 Mar 2026

    1 Impression

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. ⚡ New CVE Alert: CVE-2023-43010 🚨 Risk Level: Unknown 🧩 Affects: Multiple / Unspecified Products Reference: https://t.co/6Anf1k0zYR #CVE-2023-43010 #CVE   #CyberSecurity #InfoSec https://t.co/L84VfKNY1J

    @CVEarity

    12 Mar 2026

    37 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  12. Apple has backported fixes for CVE-2023-43010 to older iPhones and iPads after the WebKit flaw was linked to the Coruna exploit kit. Legacy devices remain a target. Patch now. #Cybersecurity #AppleSecurity #VulnerabilityAlert #PatchManagement https://t.co/seReHRDM1M

    @CloneSystemsInc

    12 Mar 2026

    38 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  13. ⚠️ Apple parcheó CVE-2023-43010 en dispositivos antiguos: WebKit con corrupción de memoria, explotada activamente por el kit "Coruna". Si tenés un iPhone/iPad viejo sin actualizar, es el momento. 🔗 https://t.co/WU5ivMvg3s…

    @varosecurity

    12 Mar 2026

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. 📌 أصدرت أبل تحديثات أمان لأجهزة iOS وiPadOS وmacOS Sonoma القديمة، بعد اكتشاف استخدامها ضمن مجموعة Coruna للهجمات. الثغرة CVE-2023-43010 في WebKit قد تسبب تلفاً للذاكرة عند معا

    @Cybercachear

    12 Mar 2026

    40 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. ⚡ Apple backports CVE-2023-43010 fix after the WebKit flaw was used in the Coruna #iPhone exploit kit. It allows memory corruption via malicious web content. Fix now covers iOS 15.8.7 & 16.7.15 devices, including iPhone 6s, 7, 8 & X. 🔗 Read → https... https://t.c

    @IT_news_for_all

    12 Mar 2026

    52 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  16. ⚡ Apple backports CVE-2023-43010 fix after the WebKit flaw was used in the Coruna #iPhone exploit kit. It allows memory corruption via malicious web content. Fix now covers iOS 15.8.7 & 16.7.15 devices, including iPhone 6s, 7, 8 & X. 🔗 Read → https://t.co/si2icbk

    @TheHackersNews

    12 Mar 2026

    8480 Impressions

    31 Retweets

    61 Likes

    12 Bookmarks

    3 Replies

    2 Quotes

  17. Adoi, Apple dah keluar update security penting untuk iPhone & iPad lama korang! 📱 Ada exploit jahat nama Coruna WebKit (CVE-2023-43010) yang target iOS 13-17.2.1, boleh buat memory corruption. Cepat update weh, kang tak pasal-pasal kantoi! https://t.co/t5mBQPyEqL

    @u_know_tekno

    12 Mar 2026

    35 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  18. CVE-2023-43010 The issue was addressed with improved memory handling. This issue is fixed in iOS 17.2 and iPadOS 17.2, macOS Sonoma 14.2, Safari 17.2, iOS 16.7.15 and iPadOS 16.7.15… https://t.co/nCTdzqXCow

    @CVEnew

    12 Mar 2026

    115 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Related CVEs

  1. Apple iOS, iPadOS, and macOS Out-of-Bounds Write VulnerabilityCVE-2025-43300
  2. A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. An app may be able to access sensitive user data.CVE-2025-31199
  3. An app could impersonate system notifications. Sensitive notifications now require restricted entitlements. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.3. An app may be able to cause a denial-of-service.CVE-2025-24091
  4. This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access sensitive user data.CVE-2025-31191
  5. Apple Multiple Products Use-After-Free VulnerabilityCVE-2025-24085

References

Sources include official advisories and independent security research.