Home / Vulnerability Intelligence / CVE-2023-43010

CVE-2023-43010 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: March 12, 2026

Apple Safari - Remote Code Execution

Published: March 12, 2026Updated: March 12, 2026Remote Exploitable

Overview

Apple iOS, iPadOS, macOS Sonoma, and Safari contain a memory corruption vulnerability caused by processing maliciously crafted web content, letting attackers potentially execute arbitrary code, exploit requires user to visit malicious content.

Severity & Score

Severity: High

CVSS Score: 8.8

Impact

Attackers can cause memory corruption leading to arbitrary code execution by processing crafted web content.

Mitigation

Update to iOS 17.2, iPadOS 17.2, macOS Sonoma 14.2, Safari 17.2, or later versions.

References

https://support.apple.com/en-us/120300
https://support.apple.com/en-us/120877
https://support.apple.com/en-us/120879
https://support.apple.com/en-us/126632
https://support.apple.com/en-us/126646

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2023-43010
Severity: High
CVSS Score: 8.8
Type: buffer_overflow
Status: unconfirmed

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H