Tag
This paper details a novel bootROM vulnerability in Apple A12/A13 SoCs, exploiting a hardware bug in the USB controller and a configuration flaw to achieve boot-chain compromise. A proof-of-concept is provided.