CVE-2023-41974

unknown KEV

Published 2026-03-05 · Modified 2026-03-05

CVSS v3

—

CVSS v2

—

VIR risk

1.5

Description

Apple iOS and iPadOS contain a use-after-free vulnerability. An app may be able to execute arbitrary code with kernel privileges.

CISA KEV

Vendor: Apple
Product: iOS and iPadOS
Due date: 2026-03-26

Predictions

Exploit likelihood

99%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cisa-kev — https://support.apple.com/en-us/HT213938 ; https://support.apple.com/kb/HT213938 ; https://nvd.nist.gov/vuln/detail/CVE-2023-41974

Exploits

References

https://support.apple.com/en-us/HT213938 ; https://support.apple.com/kb/HT213938 ; https://nvd.nist.gov/vuln/detail/CVE-2023-41974

Verify integrity in audit chain (admin only). AS-IS.