VDB
GSD-2023-41974
GSD-2023-41974
PUBLISHED
CVSS 7.800000190734863 HIGH
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, iOS 15.8.7 and iPadOS 15.8.7. An app may be able to execute arbitrary code with kernel privileges.
Risk Scores
CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | iOS and iPadOS | unspecified, unspecified |
Timeline
- Sep 22, 2023 PoC Published
- Sep 26, 2023 CVE Published
- Mar 4, 2026 PoC Published
- Mar 5, 2026 PoC Published
- Mar 5, 2026 PoC Published
- Mar 5, 2026 PoC Published
- Mar 5, 2026 PoC Published
- Mar 6, 2026 PoC Published
- Mar 12, 2026 PoC Published
- Mar 12, 2026 PoC Published
- Mar 12, 2026 PoC Published
- Mar 13, 2026 PoC Published
References
- https://support.apple.com/en-us/120949 url
- https://support.apple.com/en-us/126632 url
- https://support.apple.com/en-us/HT213938 url
- https://support.apple.com/kb/HT213938 url
- https://cloud.google.com/blog/topics/threat-intelligence/coruna-powerful-ios-exploit-kit third-party-advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-41974 url