Security Researchers Delve Into Major Vulnerability Patched in iOS 16.3 and macOS 13.2 - MacRumors
Skip to Content

Security Researchers Delve Into Major Vulnerability Patched in iOS 16.3 and macOS 13.2

by

With almost every iOS and macOS update, Apple includes a host of security improvements to address major vulnerabilities. iOS 16.3 and macOS Ventura 13.2, released back in January, were no exception. Both updates included fixes for a long list of issues, including two that were highlighted today in a report from Trellix.

iOS 16
Trellix Advanced Research Center discovered a new class of privilege execution bugs within iOS and macOS, which could be exploited to delve into an iPhone or Mac user's messages, location data, photos, call history, and more.

In a blog post highlighting how the bug was found, Trellix explains how mitigations that Apple introduced for the FORCEDENTRY zero-click exploit in September 2021 could by bypassed, allowing for a "huge range of potential vulnerabilities."

Trellix found its first vulnerability in the coreduetd process, which could be used to give an attacker access to a person's calendar, address book, and photos. Vulnerabilities in OSLogService and NSPredicate were able to be exploited to achieve code execution within Springboard, providing attackers access to the camera, microphone, call history, and more.

Data about these vulnerabilities was relayed to Apple, and the company fixed the exploits in iOS 16.3 and macOS 13.2 Ventura. Security support documents for both updates were refreshed yesterday to reflect the addition of the patches.

Trellix is credited with two vulnerabilities (CVE-2023-23530 and CVE-2023-23531) that Apple patched with improved memory handling. Trellix said that it thanks Apple for working quickly to fix the issues.

Popular Stories

iOS 26

iOS 26.4 Adds Two New Features to CarPlay

Tuesday March 24, 2026 1:55 pm PDT by
iOS 26.4 was released today, and it includes a couple of new features for CarPlay: an Ambient Music widget and support for voice-based chatbot apps. To update your iPhone 11 or newer to iOS 26.4, open the Settings app and tap on General → Software Update. CarPlay will automatically offer the new features so long as the iPhone connected to your vehicle is running iOS 26.4 or later....
Read Full Article29 comments
AirPods Pro Firmware Feature

Apple Releases New Firmware for AirPods Pro 3, AirPods Pro 2 and AirPods 4

Tuesday March 24, 2026 12:31 pm PDT by
Apple today released new firmware for the AirPods Pro 2, AirPods Pro 3, and the AirPods 4. The firmware has a version number of 8B39, up from 8B34 on the AirPods Pro 3, 8B28 on the AirPods Pro 2, and 8B21 on the AirPods 4. There is no word on what's included in the firmware, but Apple has a support document with limited notes. Most updates are limited to bug fixes and performance...
Read Full Article89 comments
apple tv 4k new orange

tvOS 26.4 Adds These New Features to Your Apple TV

Wednesday March 25, 2026 3:33 pm PDT by
Apple this week released tvOS 26.4, and the software update includes a handful of new features and changes for the Apple TV. tvOS 26.4 is compatible with all Apple TV 4K and Apple TV HD models released since 2015. To update your Apple TV, open the Settings app on the device, navigate to System → Software Updates, and select Update Software. Below, we have recapped what is new in tvOS...
Read Full Article47 comments

Top Rated Comments

Realityck Avatar
Realityck
40 months ago

apple stans in panic mode after realizing the walled garden is useless
MacOS is not a walled garden.
Score: 31 Votes (Like | Disagree)
NT1440 Avatar
NT1440
40 months ago

It's us users who pay the price for Apple's recent lack of software quality
Show me one piece of software that doesn’t have bugs and I’ll show you a piece of software that just hasn’t been examined enough.

This is the world of modern software, millions of interacting libraries, improper error checking in places that no one should be able to get to but a different exploit was found to allow for it, etc.

This isn’t an obvious “password is in plaintext” kind of security flaw. This is a chain of flaws. This is how the world works now.
Score: 30 Votes (Like | Disagree)
I7guy Avatar
I7guy
40 months ago
I guess according every other vendor in the world writes code that is 100% bug free with no vulnerabilities.:rolleyes:
Score: 28 Votes (Like | Disagree)
madmin Avatar
madmin
40 months ago
It's us users who pay the price for Apple's recent lack of software quality
Score: 22 Votes (Like | Disagree)
R
rgwebb
40 months ago

It's us users who pay the price for Apple's recent lack of software quality
Weird takeaway from a story about Apple rapidly responding to a white hat security team's notification of vulnerabilities.
Score: 20 Votes (Like | Disagree)
C
citysnaps
40 months ago

I guess according every other vendor in the world writes code that is 100% bug free with no vulnerabilities.:rolleyes:
It's astonishing so many people believe that's true.

Apparently everything else in their lives marches to 100.0% perfection 100.0% of the time.
Score: 17 Votes (Like | Disagree)
Read All Comments