Find notable cyber news and cases, enriched with sources, timelines, and signals.

Safari WebKit crash and memory corruption flaws (multiple vulnerabilities)

Vulnerability
First reported
Last updated
Happening score
H score 18
1 unique sources, 1 articles

Summary

Hide ▲

Apple fixed five WebKit vulnerabilities in Safari and related platforms after Google Big Sleep found flaws that could trigger browser crashes or memory corruption when processing malicious web content. The set includes CVE-2025-43429, CVE-2025-43430, CVE-2025-43431, CVE-2025-43433, and CVE-2025-43434. Apple said the flaws were not flagged as exploited in the wild.

Related Happenings

Apple Passwords app and Safari add Apple Intelligence-powered automatic password repair

Security Tool/Service
H score10 First: 09.06.2026 00:03 Last: 09.06.2026 00:03 Sources 1

About this happening: **Apple Passwords app** and **Safari** are adding an **Apple Intelligence** feature that can automatically repair weak or compromised passwords, reducing password-hygiene risk for...

Operation Triangulation updated iPhone espionage campaign

Campaign
H score41 First: 26.03.2026 15:10 Last: 26.03.2026 15:10 Sources 1

About this happening: The **Operation Triangulation** espionage lineage has resurfaced through **Coruna**, extending **zero-click iPhone** targeting to newer **A17** and **M3** devices and **iOS 17.2**...

Coruna iOS exploit analysis ties updated Triangulation kernel exploit lineage

Technical Analysis
H score33 First: 26.03.2026 15:10 Last: 26.03.2026 15:10 Sources 1

About this happening: **Coruna** has been linked to an **updated** exploit lineage from **Operation Triangulation**, showing that a long-running iPhone attack framework continues to evolve and can stil...

Coruna watering-hole and fake-site exploitation campaign

Campaign
H score44 First: 26.03.2026 13:07 Last: 26.03.2026 13:07 Sources 1

About this happening: A suspected **Russia-aligned nation-state actor** is using **Coruna** in **watering-hole attacks in Ukraine** and a **mass exploitation campaign**, expanding the kit’s abuse beyon...

CISA KEV remediation order for five exploited Apple, Craft CMS, and Laravel Livewire flaws

Advisory/Mitigation
H score52 First: 21.03.2026 10:25 Last: 21.03.2026 10:25 Sources 1

About this happening: **CISA** added **five exploited flaws** affecting **Apple**, **Craft CMS**, and **Laravel Livewire** to the **KEV catalog**, creating an urgent remediation requirement for federal...

Timeline

  1. 04.11.2025 10:10 2 articles · 8mo ago

    Initial report: Safari WebKit crash and memory corruption flaws (multiple vulnerabilities)

    Initial Disclosure

    Google's **Big Sleep** identified **five WebKit flaws** in **Safari** that Apple later tied to **crash** and **memory corruption** risk. The vulnerabilities were then addressed in Apple's **26.1** releases across multiple operating systems and Safari.

    Show sources