Apple Releases Security Update for Older iPhones and iPads After Coruna Exploit

[harlan4096]

Apple has released security updates for older iPhones and iPads to address vulnerabilities targeted by the Coruna exploit kit, which has been used in cyberespionage and cryptocurrency theft attacks since February 2025. The patches cover devices that cannot run the latest iOS version and are not eligible for earlier fixes applied to newer hardware.

"This update brings that fix to devices that cannot update to the latest iOS version," Apple stated in the security advisories published Wednesday.

Apple Patches Coruna Exploits Used in Real Attacks Since Early 2025

The Coruna exploit kit has been linked to several attack campaigns since early 2025. Security researchers say it includes multiple exploit chains capable of gaining remote code execution or kernel-level privileges on vulnerable devices.

Apple’s updates address several vulnerabilities targeted by the framework, including:

• CVE-2023-41974: Kernel use-after-free vulnerability fixed with improved memory management
  
• CVE-2024-23222: WebKit type confusion issue addressed with improved checks
  
• CVE-2023-43000: WebKit use-after-free vulnerability
  
• CVE-2023-43010: WebKit memory handling flaw
  

Many of these issues were previously fixed in newer versions of iOS but had not yet been patched on older devices.

Continue Reading...