Vulnerability detail

Enriched intelligence for a single CVE

7.8

CVSS
High

CVE-2023-41974

PUBLISHED

A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, iOS 15.8.7 and iPadOS 15.8.7. An...

1 day faster than CISA KEV

Exploited in the wild Low complexity

Vendor: Apple
Product: iOS and iPadOS
Published: Jan 10, 2024
EPSS: 0.2% · 44% pctl

Automate this intelligence with the Pro API

Everything on this page — CVSS, EPSS, exploit status, PoCs, scanner integrations, mentions, tags, and immediate honeypot data — is available programmatically for VM, SOC, and CTI workflows.

Learn about Pro

Description

A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, iOS 15.8.7 and iPadOS 15.8.7. An app may be able to execute arbitrary code with kernel privileges.

ios cisa

Weaknesses (CWE)

CWE-416

Use After Free

CVSS scores

CVSS v3.1 7.8 High

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitation status

Exploited in the wild

Recorded 2026-06-01 11:38:00 UTC · CVE

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source	Added
CVE First	2026-06-01 11:38 UTC
CISA	2026-06-02 14:03 UTC

Timeline

CVE ID Reserved

2023-09-06 17:40 UTC
CVE Published to Public

2024-01-10 22:03 UTC
Added to KEVIntel

2026-06-01 11:38 UTC
KEV confirmed by CISA

2026-06-02 14:03 UTC