Key Highlights

• Apple has released new iOS 16 and iOS 15 updates to fix security flaws linked to the Coruna exploit
• The patches target older iPhone and iPad models no longer eligible for the latest iOS versions
• The Coruna exploit reportedly used 23 vulnerabilities across iOS versions from 13 to 17.2.1
• Apple fixed critical kernel and WebKit flaws that could allow arbitrary code execution

Apple has rolled out new iOS 16 and iOS 15 updates to fix serious security vulnerabilities linked to the Coruna exploit, a newly disclosed attack chain affecting older iPhone models. With this release, Apple aims to protect devices that can no longer upgrade to the latest iOS versions but remain active worldwide.

Notably, Apple confirmed that the updates patch kernel and WebKit flaws that attackers could exploit to gain deeper system access and run malicious code.

What Are the Latest iOS Updates Apple Released?

Apple has issued multiple updates specifically for older devices:

• iOS 16.7.15
• iOS 15.8.7
• iPadOS 16.7.15
• iPadOS 15.8.7

These updates target iPhones and iPads that cannot run newer firmware such as iOS 17. Apple described them as containing “important security fixes,” with a clear focus on vulnerabilities linked to the Coruna exploit.

What Is the Coruna Exploit and Why Does It Matter?

The Coruna exploit came to light after researchers at the Google Threat Intelligence Group (GTIG) identified it earlier this month. According to their findings, the exploit combines multiple flaws into powerful attack chains that target iPhones running software versions from iOS 13 to iOS 17.2.1.

More importantly, researchers revealed that Coruna includes:

• Five complete iOS exploit chains
• A total of 23 vulnerabilities
• Affected versions released between September 2019 and December 2023

As a result, attackers could potentially bypass several layers of iOS security and gain unauthorized control over affected devices.

Which Vulnerabilities Did Apple Fix?

Apple’s security documentation highlights fixes across two critical components: the kernel and WebKit. Together, these patches close some of the most dangerous entry points used by the exploit.

Kernel Vulnerability Fixed in the Update

One of the most severe issues involves a kernel flaw tracked as CVE-2023-41974.

• The bug stemmed from a use-after-free issue
• It could allow apps to execute arbitrary code with kernel-level privileges
• Apple fixed the issue by improving memory management

Because the kernel controls core system functions, this fix plays a key role in stopping deeper system compromise.

WebKit Vulnerabilities Addressed

In addition to kernel fixes, Apple also patched several WebKit-related flaws that attackers could trigger through malicious web content.

The fixed issues include:

• CVE-2024-23222, caused by a type confusion bug
• CVE-2023-43000, linked to a use-after-free issue
• CVE-2023-43010, related to improper memory handling

Together, these bugs could allow arbitrary code execution or cause memory corruption when users visit compromised websites.

Why Older iPhones Faced Higher Risk

While Apple had already addressed some of these vulnerabilities in newer iOS releases, older devices remained exposed due to compatibility limits. Consequently, attackers could still target users running outdated but widely used hardware.

With the latest updates, Apple has now extended those protections to legacy devices. This step ensures that users who cannot upgrade their hardware still receive critical security coverage.

How to Install the Latest iOS 16 or iOS 15 Update

Apple urges users to install the update as soon as possible, especially if they rely on older iPhones or iPads.

To update your device:

1. Open the Settings app
2. Tap General, then select Software Update
3. Wait while the device checks for available updates
4. Tap Download & Install
5. Accept the terms and follow the on-screen instructions

During installation, your device may restart more than once.

Why This Update Is Critical for Users

Security researchers warned that if attackers successfully trigger the Coruna exploit, they could gain persistent access to affected devices. Moreover, such access could allow them to bypass multiple security safeguards without user interaction.

Therefore, by releasing these iOS 16 and iOS 15 updates, Apple has closed a significant attack window affecting millions of older iPhones still in everyday use.

Final Word

Apple’s rollout of iOS 16 and iOS 15 updates highlights the seriousness of the Coruna exploit and its broad impact across iPhone generations. Users running older devices should install the update immediately to reduce exposure to known and actively researched security vulnerabilities.