CVE-2023-28205
CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th
A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
| Vendor | apple |
| Product | ios and ipados |
| Ecosystems | |
| Industries | Technology |
| Published | Apr 10, 2023 |
| Last Updated | Oct 21, 2025 |
โ ๏ธ Actively Exploited โ Act Now
Get instant alerts for apple ios and ipados
This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2023-28205.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Apple / iOS and iPadOS
unspecified < 15.7
Apple / Safari
unspecified < 16.4
Apple / macOS
unspecified < 13.3
Apple / iOS and iPadOS
unspecified < 16.4
References
support.apple.com: https://support.apple.com/en-us/HT213723 support.apple.com: https://support.apple.com/en-us/HT213722 support.apple.com: https://support.apple.com/en-us/HT213721 support.apple.com: https://support.apple.com/en-us/HT213720 cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-28205