Security researchers have published a new unpatchable SecureROM exploit for Apple’s A12 and A13 chips, extending public BootROM exploitation beyond the devices affected by checkm8.
iPhone XR
iPhone XRSecurity firm Paradigm Shift disclosed the unpatched exploit, called usbliter8, on June 18. It achieves code execution through a flaw in Apple’s USB boot process.
The vulnerability affects devices powered by Apple’s A12 and A13 chips, including the iPhone XS, iPhone XS Max, iPhone XR, and iPhone 11 lineup. Several iPad models and Apple Watch devices powered by S4 and S5 chips are affected as well.
Usbliter8 combines a hardware flaw in a USB controller with the way security protections are configured on affected devices. The attack works through Device Firmware Update mode, better known as DFU mode.