CVE-2023-43000 - Apple Multiple products Use-After-Free Vulnerability
Project:Apple
Product:Multiple Products
Date Added:2026-03-05Due Date:2026-03-26
Vulnerability Name
Apple Multiple products Use-After-Free Vulnerability
Description
Apple macOS, iOS, iPadOS, and Safari 16.6 contain a use-after-free vulnerability due to the processing of maliciously crafted web content that may lead to memory corruption.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Additional Notes
https://support.apple.com/en-us/120324
https://support.apple.com/en-us/120331
https://support.apple.com/en-us/120338
https://nvd.nist.gov/vuln/detail/CVE-2023-43000
Related News Articles
Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOSMarch 18, 2026
Apple patches older iPhones and iPads against Coruna exploitsMarch 12, 2026
Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit ExploitMarch 12, 2026