Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Apple WebKit Use-After-Free Vulnerability Leading to Memory Corruption

Vulnerability

Exploited

Patched

A use-after-free vulnerability has been identified in WebKit, the engine that powers the Safari browser. This issue affects multiple Apple products, including macOS Ventura 13.5, iOS 16.6, and iPadOS 16.6. The vulnerability arises from improper memory management, which can be exploited by processing maliciously crafted web content, potentially leading to memory corruption.

Impact

Exploitation of this vulnerability can cause memory corruption, allowing for arbitrary code execution with kernel privileges on affected devices.

Remediation

Users can update to macOS Ventura 13.5, iOS 16.6, or iPadOS 16.6 to address this vulnerability. Safari users can also update to Safari 16.6.

Added: Nov 5, 2025, 7:28 PM

Updated: Mar 5, 2026, 7:56 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

7.5

exploitability

6.1

remediation

7.7

relevance

0.9

threat

8.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

7.5

exploitability

6.1

remediation

7.7

relevance

0.9

threat

8.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

Apple WebKit Use-After-Free Vulnerability Leading to Memory Corruption

Vulnerability

Impact

Remediation

Affected Products

Apple macOS Ventura

Apple iOS

Apple iPadOS

Apple Safari

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating