Apple has recently extended security patches for a critical WebKit vulnerability to older device models after discovering the flaw was exploited by the Coruna exploit kit. These updates ensure that users unable to run the latest operating systems are protected against memory corruption risks triggered by malicious web content.
Apple recently distributed backported security fixes to address vulnerabilities previously identified in newer versions of iOS, iPadOS, and macOS. The primary focus of this update is CVE-2023-43010, a WebKit flaw that could allow memory corruption when a device processes specially crafted web content. By bringing these fixes to older software versions like iOS 15.8.7 and 16.7.15, the company is protecting a wide range of legacy hardware, including the iPhone 6s and the first-generation iPad Air.
In addition to the primary WebKit patch, the latest updates for older devices incorporate fixes for several other vulnerabilities linked to the Coruna exploit kit. These include issues ranging from kernel-level flaws that could allow unauthorized code execution to type confusion errors in web processing. Many of these vulnerabilities were originally addressed in various releases throughout 2023 and early 2024, but they are now being consolidated for users who remained on older firmware.
The Coruna exploit kit gained notoriety following reports that it contains a sophisticated array of over twenty exploits designed to target a broad spectrum of iPhone models. Security researchers have noted that the kit appears to have ties to frameworks previously associated with high-level threat actors. The complexity of the kit highlights a growing trend where sophisticated cyber tools are used to target vulnerabilities across multiple generations of mobile software.
Recent investigations suggest that the development of Coruna may be linked to U.S. military contractors, with some speculation involving the illicit sale of exploits to international brokers. While some components of the kit share similarities with previous high-profile campaigns like Operation Triangulation, experts caution against definitive attribution based solely on the vulnerabilities targeted. It is possible for different groups to independently develop exploits for the same public flaws without sharing code.
Security firms continue to monitor the situation as the origins of the Coruna framework remain a subject of intense research. While the exact creators of the exploit kit are still being debated, the release of these patches marks a critical step in neutralizing the threat for millions of legacy device users. Apple encourages all users on older hardware to install these updates immediately to defend against potential memory corruption and unauthorized system access.
Source: Apple Releases Security Updates For Older iOS Devices Hit By Coruna WebKit Exploit