ACTIVELY EXPLOITED3 sources verified·1 min read
By Lyrie Threat Intelligence·9/11/2023
CVE-2023-41064 added to CISA KEV: Apple iOS, iPadOS, and macOS
Status: ✅ Confirmed exploited in the wild
Date added: 2023-09-11
Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Due date: 2023-10-02
Why this matters
Apple iOS, iPadOS, and macOS contain a buffer overflow vulnerability in ImageIO when processing a maliciously crafted image, which may lead to code execution. This vulnerability was chained with CVE-2023-41061.
Sources
Lyrie Verdict
Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.