CVE-2023-32439

Vulnerability updated 5 months ago (2024-11-29T13:37:32.763Z)

Download STIX

Preview STIX

CVE-2023-32439 is a significant vulnerability discovered in Apple's WebKit browser engine. This flaw stems from a type confusion issue that could lead to arbitrary code execution if an affected device processes maliciously crafted web content. The vulnerability was reported by an anonymous source and may have been exploited in the wild, posing a serious threat to users of iOS and macOS devices. This vulnerability, along with another one identified as CVE-2023-32435, resides in the WebKit browser engine. Both can be exploited to execute arbitrary code on the target system when a user visits a specially crafted webpage. These vulnerabilities highlight the potential risks associated with visiting untrusted websites or clicking on suspicious links, emphasizing the need for vigilant online behavior. In response to these findings, Apple has released patches addressing both CVE-2023-32439 and CVE-2023-32435. Alongside these, another kernel-level bug, CVE-2023-32434, was also addressed, which allowed an attacker to execute arbitrary code with kernel privileges. These patch releases underscore the importance of regularly updating software to mitigate the risk of exploitation by such vulnerabilities.

Description last updated: 2024-03-14T17:23:08.266Z

What's your take? (Question 1 of 5)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Operation Tr...

Vulnerability

Ios

Apple

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Malware

To see the evidence that has resulted in these malware associations, create a free account

Alias Description	Association Type	Votes
The TriangleDB Malware is associated with CVE-2023-32439. TriangleDB is a sophisticated malware implant targeting iOS devices, discovered as part of a likely state-sponsored cyber-espionage campaign named Operation Triangulation. The malware was first disclosed by Kaspersky researchers in June, revealing its deployment through a new zero-click iOS attack.	Unspecified	2

Associated Vulnerabilities

To see the evidence that has resulted in these vulnerability associations, create a free account

Alias Description	Association Type	Votes
The CVE-2023-32434 Vulnerability is associated with CVE-2023-32439. CVE-2023-32434 is a high severity software vulnerability that allows for arbitrary code execution with kernel privileges. This flaw, along with two others (CVE-2023-32435 and CVE-2023-32439), were identified as zero-days in June 2023, exploited to deploy the Triangulation spyware via iMessage. The s	Unspecified	2

Source Document References

Information about the CVE-2023-32439 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
DARKReading	a year ago	Patch Now: Apple Zero-Day Exploits Bypass Kernel Security
CERT-EU	a year ago	Apple Zero-Day Exploits Bypass Kernel Security \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
CERT-EU	a year ago	Apple Fixes Actively Exploited Zero-Days in iOS (CVE-2024-23225)
CERT-EU	a year ago	Apple emergency updates fix recent zero-days on older iPhones
CERT-EU	a year ago	CVE-2023-42916: Apple Zero-Days Exploited in the Wild
Securityaffairs	a year ago	Apple addressed 2 new iOS zero-day vulnerabilities
CERT-EU	2 years ago	Recently patched Apple, Chrome zero-days exploited in spyware attacks
Securityaffairs	2 years ago	Apple releases iOS 16 update to fix CVE-2023-42824 on older devices
CERT-EU	2 years ago	Apple fixes iOS Kernel zero-day vulnerability on older iPhones
Securityaffairs	2 years ago	Apple fixed the 17th zero-day flaw exploited in attacks
Securityaffairs	2 years ago	Apple rolled out emergency updates to address 3 new actively exploited zero-day flaws
CERT-EU	2 years ago	Apple emergency updates fix 3 new zero-days exploited in attacks
CERT-EU	2 years ago	CISA warns govt agencies to secure iPhones against spyware attacks
Securityaffairs	2 years ago	CISA adds recently discovered Apple zero-days to Known Exploited Vulnerabilities Catalog
CERT-EU	2 years ago	‘BLASTPASS’ iPhone Exploit — Apple Asleep at the Switch
CERT-EU	2 years ago	Apple zero-click iMessage exploit used to infect iPhones with spyware
Securityaffairs	2 years ago	Zero-days fixed by Apple were used to deliver Pegasus spyware
Securityaffairs	2 years ago	Apple discloses 2 actively exploited zero-days in iPhones, Macs
CERT-EU	2 years ago	Heimdal®’s Semiannual Rundown of the Most Exploited Vulnerabilities of 2023
CERT-EU	2 years ago	Actively Exploited Apple Zero-Day Affects iPhone Kernel