Unpatchable ‘usbliter8’ Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

Staff Editor 2026-06-19
Unpatchable ‘usbliter8’ Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

Unpatchable ‘usbliter8’ Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

https://thehackernews.com/2026/06/unpatchable-usbliter8-exploit-breaks.html

Publish Date: 2026-06-19 14:37:00

Source Domain: thehackernews.com

Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that achieves arbitrary code execution inside the SecureROM of Apple’s A12 and A13 chips.

That code is burned into the silicon at manufacture. No software update can reach it. Affected devices will carry this flaw for as long as they stay in use.

This is not a remote attack. It requires physical possession of the device, which must be in DFU mode and connected via USB to a dedicated RP2350-based microcontroller board. With that setup, the exploit finishes in under two seconds, before Apple’s signed boot chain loads.

The full technical write-up and a working proof of concept went public on June 18, 2026, following coordinated disclosure with Apple Product Security.

Affected Devices

The public PoC supports A12, A13, S4, and S5 SoCs. A12X and A12Z support is described as theoretically possible but not yet implemented.

Device families in that range include the iPhone XS, XS Max, and XR; the iPhone 11, 11 Pro, 11 Pro Max; the iPhone SE (2nd generation); the iPad Air 3rd gen, iPad mini 5th gen, and iPad 8th gen; Apple Watch Series 4 and 5; the first-generation Apple Watch SE; the HomePod mini; and other Apple products built on those chips. A11 is not affected. A14 and later appear to be out of reach for this exploit path.

The Bug

The root issue is a hardware flaw in the Synopsys DWC2 USB controller.

The controller stores incoming USB Setup packets via DMA, buffers up to three, then resets its write pointer on the fourth by decrementing it by a fixed 24 bytes. It also accepts smaller-than-standard packets, incrementing the pointer only by the actual bytes written. That mismatch accumulates into a repeatable buffer underflow, stepping the write pointer backwards through memory 12 bytes at a time.

What makes this exploitable on A12 and A13 is how Apple configures the USB DART (Device Address Resolution Table, the chip’s IOMMU) inside SecureROM. On affected devices,…

Source

More Stories

From Cybersecurity To Energy Cooperation: The Significance Of BRICS NSAs Meeting

From Cybersecurity To Energy Cooperation: The Significance Of BRICS NSAs Meeting

Staff Editor 2026-06-20
SGF urges greater investment in cybersecurity, broadband infrastructure 

SGF urges greater investment in cybersecurity, broadband infrastructure 

Staff Editor 2026-06-20
City of Acworth investigates cybersecurity breach, services fully restored

City of Acworth investigates cybersecurity breach, services fully restored

Staff Editor 2026-06-20

Terms and Conditions - Privacy Policy