ACCORDING to CISA, the Known Exploited Vulnerabilities (KEV) catalog lists CVE-2023-41974 as an Apple iOS and iPadOS Use-After-Free vulnerability, which could allow an app to execute arbitrary code with kernel privileges. The entry notes a Related CWE of CWE-416 and states that it is Unknown whether it has been used in ransomware campaigns. Date Added is 2026-03-05 and Due Date is 2026-03-26.
The guidance accompanying the entry advises applying mitigations per vendor instructions, following applicable BOD 22-01 guidance for cloud services, or discontinuing use of the product if mitigations are unavailable. Additional links provided include support articles from Apple and the NIST NVD page for CVE-2023-41974.
This KEV item is part of a broader CISA effort to maintain an authoritative source of vulnerabilities that have been exploited in the wild to help organisations prioritise their vulnerability management efforts.