Live Feeds
● LIVE Updated 2h ago · 26 sources tracked

Researchers drop checkm8-style BootROM exploit for A12 and A13 iPhones

Security researchers at Paradigm Shift published a working exploit called usbliter8. The flaw exists in the BootROM of Apple A12 and A13 chips and allows for arbitrary code execution. Because the bug is burned into the silicon, software updates cannot fix it.

RSS Source map (26)

What changed

New details identify the specific affected devices, including the iPhone XS, XR, and 11.

Live updates

  1. Paradigm Shift Releases usbliter8 BootROM Exploit for A12 and A13 Chips

    Security researchers at Paradigm Shift published a working exploit called usbliter8. The flaw exists in the BootROM of Apple A12 and A13 chips and allows for arbitrary code execution. Because the bug is burned into the silicon, software updates cannot fix it.

    What's confirmed:

    • The usbliter8 exploit targets the BootROM of Apple A12 and A13 chips.
    • The vulnerability is a hardware-level flaw that cannot be fixed with software updates.
    • Affected devices include the iPhone XS, iPhone XR, and iPhone 11.
    • Paradigm Shift released the exploit including full proof-of-concept code.

    Still unconfirmed:

    • The iPhone SE second generation is affected by the exploit.
    • Apple Watch S4 and S5 models are permanently exposed.
    confidence 95%

  2. usbliter8 Exploit Permanently Compromises Apple A12 and A13 Chips

    Security researchers at Paradigm Shift released usbliter8, a BootROM exploit targeting Apple A12 and A13 processors. The flaw exists in the immutable SecureROM and allows for arbitrary code execution. Because the vulnerability is burned into the silicon, it cannot be fixed with software updates.

    What's confirmed:

    • The usbliter8 exploit targets a flaw in the SecureROM of Apple A12 and A13 chips.
    • This vulnerability is unpatchable through software updates.
    • The exploit enables arbitrary code execution.
    • Affected devices include the iPhone XR and iPhone 11.
    • The exploit requires physical access to bypass boot protections.

    Still unconfirmed:

    • The exploit affects the iPhone XS and 11 Pro models.
    • The vulnerability exposes millions of iPhones worldwide.
    confidence 95%

  3. Paradigm Shift Releases usbliter8 BootROM Exploit for A12 and A13 Chips

    Security firm Paradigm Shift published a proof-of-concept exploit called usbliter8 targeting Apple A12 and A13 chips. The vulnerability exists in the SecureROM, which is burned into the silicon during manufacture. Because this code cannot be updated via software, the flaw is unpatchable.

    What's confirmed:

    • The usbliter8 exploit targets Apple devices using A12 and A13 chips.
    • Paradigm Shift published the technical details and a working proof-of-concept for the vulnerability.
    • The flaw is located in the BootROM, also known as SecureROM.
    • The vulnerability is unpatchable because the affected code is baked into the chip at manufacture.
    • The exploit requires physical possession of the device in DFU mode connected via USB to an RP2350-based microcontroller board.
    • The exploit achieves arbitrary code execution in under two seconds before the signed boot chain loads.

    Still unconfirmed:

    • The flaw affects seven specific iPhone models.
    • The exploit opens the door for a new iPhone jailbreak.
    • The flaw extends up to the iPhone 11.
    confidence 100%