Today's cybersecurity headlines are brought to you by ThreatPerspective


Ethical Hacking News

Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs



The latest update by Apple includes patches for over three dozen flaws in their iOS, macOS, Safari browsers, and WebKit engine. These updates are part of an effort to improve the overall security of these platforms and prevent potential attacks by malicious hackers. In this article, we will explore the recent security patches by Apple and discuss their significance in the context of cybersecurity threats.

  • A recent update by Apple includes patches for over three dozen flaws in their iOS, macOS, Safari browsers, and WebKit engine.
  • The updates aim to improve the overall security of these platforms and prevent potential attacks by malicious hackers.
  • These vulnerabilities include memory corruption issues, out-of-bounds write issues, use-after-free issues, and bugs that could leak sensitive kernel state.
  • No actively exploited vulnerabilities have been disclosed yet.



  • Threat Intelligence from The Hacker News (THN) brings you the latest news and information on cybersecurity threats, vulnerabilities, and security patches. In this article, we will delve into a recent update by Apple that includes patches for over three dozen flaws in their iOS, macOS, Safari browsers, and WebKit engine.

    These updates have been released as part of an effort to improve the overall security of these platforms and prevent potential attacks by malicious hackers. According to a statement shared with Reuters, the company has made these updates much earlier than before in response to concerns that AI tools could accelerate the development of exploits and act as an enabler of cyber warfare.

    The WebKit vulnerabilities are listed below:

    * CVE-2026-43707: A memory corruption issue that could result in an unexpected process crash when processing maliciously crafted web content. It was addressed with improved memory handling.
    * CVE-2026-43716: An unspecified issue that could result in an unexpected Safari crash when processing maliciously crafted web content. It was addressed with improved memory handling.
    * CVE-2026-43745: An out-of-bounds write issue that could result in an unexpected Safari crash when processing maliciously crafted web content. It was addressed with improved input validation.
    * CVE-2026-43715: A use-after-free issue that could result in memory corruption when processing maliciously crafted web content. It was addressed with improved memory management.

    The four vulnerabilities are part of nearly 30 vulnerabilities that have been patched in WebKit, an open-source web browser engine developed by Apple. Others include a use-after-free issue in WebKit Canvas (CVE-2026-43720) and a vulnerability that could be exploited by a malicious website to process restricted web content outside the sandbox (CVE-2026-43725).

    Apple has also remediated three bugs that could be exploited by a malicious app to leak sensitive kernel state (CVE-2026-43722), cause unexpected system termination or write kernel memory (CVE-2026-43724), or corrupt kernel memory (CVE-2026-39868). Security researcher Hyunwoo Kim, who discovered Dirty Frag, has been credited with discovering and reporting CVE-2026-43724 and CVE-2026-43722.

    The updates are available for iOS 26.5.2, iPadOS 26.5.2, macOS Tahoe 26.5.2, and Safari 26.5.2. None of the patched vulnerabilities has been disclosed as actively exploited in the wild.

    In this article, we will explore the recent security patches by Apple and discuss their significance in the context of cybersecurity threats. We will also delve into the potential risks associated with these vulnerabilities and provide guidance on how to protect your devices from potential attacks.



    Related Information:
  • https://www.ethicalhackingnews.com/articles/Apple-Patches-30-iOS-macOS-Safari-Flaws-Including-AI-Discovered-WebKit-Bugs-ehn.shtml

  • https://thehackernews.com/2026/06/apple-patches-30-ios-macos-safari-flaws.html

  • https://nvd.nist.gov/vuln/detail/CVE-2026-43707

  • https://www.cvedetails.com/cve/CVE-2026-43707/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-43716

  • https://www.cvedetails.com/cve/CVE-2026-43716/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-43745

  • https://www.cvedetails.com/cve/CVE-2026-43745/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-43715

  • https://www.cvedetails.com/cve/CVE-2026-43715/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-43720

  • https://www.cvedetails.com/cve/CVE-2026-43720/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-43725

  • https://www.cvedetails.com/cve/CVE-2026-43725/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-39868

  • https://www.cvedetails.com/cve/CVE-2026-39868/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-43722

  • https://www.cvedetails.com/cve/CVE-2026-43722/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-43724

  • https://www.cvedetails.com/cve/CVE-2026-43724/


  • Published: Wed Jul 1 13:31:12 2026 by llama3.2 3B Q4_K_M













    © Ethical Hacking News . All rights reserved.

    Privacy | Terms of Use | Contact Us