CVE-2024-23222: Apple WebKit Type Confusion

Score: 8.8
HIGH
Published: 2024-01-22Affected: iOS < 17.3, macOS < 14.3, Safari < 17.3CWE-843 β†—

Was Apple WebKit exploited as a zero-day?

A type confusion vulnerability in WebKit, Apple's browser engine. Processing maliciously crafted web content may lead to arbitrary code execution. Exploited in the wild as a zero-day.

Impact & Exploitation

Affects all Apple devices: iPhone, iPad, Mac, and any app using WebView. Zero-day exploitation confirmed. Enables full device compromise through malicious websites.

Related Resources

πŸ” Related CWE Entries

πŸ›‘οΈ Notable Vulnerabilities

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS8.8
SeverityHIGH
CWECWE-843
Published2024-01-22

Tags

applewebkitzero-daybrowser

Quick Links

Is your system affected?

Precogs AI detects Apple WebKit Type Confusion in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2024-23222 Apple WebKit Type Confusion don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo