ACTIVELY EXPLOITED3 sources verified·1 min read
By Lyrie Threat Intelligence·4/10/2023
CVE-2023-28206 added to CISA KEV: Apple iOS, iPadOS, and macOS
Status: ✅ Confirmed exploited in the wild
Date added: 2023-04-10
Required action: Apply updates per vendor instructions.
Due date: 2023-05-01
Why this matters
Apple iOS, iPadOS, and macOS IOSurfaceAccelerator contain an out-of-bounds write vulnerability that allows an app to execute code with kernel privileges.
Sources
Lyrie Verdict
Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.