Security researchers at Paradigm Shift have disclosed a permanent hardware vulnerability in Apple's A12 and A13 processors. The exploit, named usbliter8, achieves arbitrary code execution within the SecureROM boot chain, code burned directly into silicon at manufacture.
The vulnerability is unfixable through software updates. Apple cannot patch SecureROM remotely because it sits at the lowest level of the processor and loads before any operating system. Affected devices will retain this flaw indefinitely.
usbliter8 requires physical access to a device and USB connectivity to execute. An attacker must connect directly to a target iPhone, iPad, or other A12/A13 device to trigger the exploit. This significantly limits the practical threat surface compared to remote attacks, though it remains serious for high-value targets, stolen devices, and forensic scenarios.
The A12 Bionic and A13 Bionic chips powered iPhones released between 2018 and 2019, including the iPhone XS, iPhone XR, and iPhone 11 models. Millions of devices remain in active use globally.
Exploitation of SecureROM breaks the trust chain that protects sensitive operations like cryptographic key generation and verification. Once code runs in SecureROM, an attacker can bypass device protections including the Secure Enclave, potentially leading to complete security compromise.
Apple addressed this specific usbliter8 vulnerability in later processor generations starting with the A14 Bionic, released in 2020. The company incorporated design changes to prevent the same attack vector from working on newer chips.
For organizations managing A12 and A13 devices, the practical mitigation remains physical security. Restricting USB access, enabling USB Restricted Mode when possible, and enforcing strong device passphrases reduce attack risk. Organizations should accelerate replacement of A12