CISA Adds iOS Flaws From Coruna Exploit Kit to KEV List
Summary
CISA has added vulnerabilities exploited by the nation-state-grade Coruna exploit kit to its Known Exploited Vulnerabilities (KEV) catalog. These flaws impact iOS versions from 13 up to 17.2.1, indicating active exploitation.
IFF Assessment
FOE
The addition of exploited iOS vulnerabilities to the KEV list signifies active threats that defenders must address.
Severity
9.0
Critical
(AI Estimated)
Defender Context
This alert from CISA highlights critical vulnerabilities in widely used iOS devices that are being actively exploited. Defenders should prioritize patching or mitigating affected iOS versions to prevent compromise, especially given the 'nation-state-grade' nature of the exploit kit.