CVE-2023-41974

A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, iOS 15.8.7 and iPadOS 15.8.7. An...

Basic Information

CVE State: PUBLISHED
Reserved Date: September 06, 2023
Published Date: January 10, 2024
Last Updated: March 12, 2026
Vendor: Apple
Product: iOS and iPadOS
Description: A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, iOS 15.8.7 and iPadOS 15.8.7. An app may be able to execute arbitrary code with kernel privileges.
Tags

CVSS Scores

CVSS v3.1

7.8 - HIGH

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC Information

Exploitation: active
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (2026-06-01 11:38:00 UTC) Source

References

https://support.apple.com/en-us/120949 https://support.apple.com/en-us/126632

Known Exploited Vulnerability Information

Source	Added Date
CVE	2026-06-01 11:38:00 UTC

Timeline

CVE ID Reserved

September 06, 2023
CVE Published to Public

January 10, 2024
Added to KEVIntel

June 01, 2026