ACTIVELY EXPLOITED3 sources verified·1 min read
By Lyrie Threat Intelligence·5/24/2022
CVE-2016-4657 added to CISA KEV: Apple iOS
Status: ✅ Confirmed exploited in the wild
Date added: 2022-05-24
Required action: Apply updates per vendor instructions.
Due date: 2022-06-14
Why this matters
Apple iOS WebKit contains a memory corruption vulnerability that allows attackers to execute remote code or cause a denial-of-service (DoS) via a crafted web site. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.
Sources
Lyrie Verdict
Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.