Pinned Loading

1. Apple-Silicon-A17-Flaw Apple-Silicon-A17-Flaw Public

   The Secure Enclave and digitizer controller share I2C4. Electrical faults on this bus halt SPU init and break input. A silicon-level flaw with no redundancy or recovery.

   2 1

2. A16-FuseBypass A16-FuseBypass Public

   This repository discloses a critical vulnerability in Apple’s A16 Bionic chip, where debug logic is executed on production-fused devices (dev-fused=0, debug=0x0). Logs show SecureROM and co-process…

   6 1

3. Glass-Cage-iOS18-CVE-2025-24085-CVE-2025-24201 Glass-Cage-iOS18-CVE-2025-24085-CVE-2025-24201 Public

   Glass Cage is a zero-click PNG-based RCE chain in iOS 18.2.1, exploiting WebKit (CVE-2025-24201) and Core Media (CVE-2025-24085) to achieve sandbox escape, kernel-level access, and device bricking.…

   3 1

4. ams-failopen ams-failopen Public

   Zero-day in AppleMediaServices: Bag fetch failure disables Mescal/Absinthe signing. Requests to Apple services proceed unsigned, exposing downgrade, replay, and bypass risk. Includes analysis, log …

5. iOS18.6.2-Persistent-Automation-Exploit-in-Siri-Shortcuts-and-Apple-SWC iOS18.6.2-Persistent-Automation-Exploit-in-Siri-Shortcuts-and-Apple-SWC Public

   This repo documents a vulnerability in Siri Shortcuts and Shared Web Credentials (SWC) allowing malformed payloads to persistently execute, trigger retry storms, bypass TLS validation, and request …

   3

6. ios-trust-collapse ios-trust-collapse Public

   iOS 18.6.2 suffers from broken encryption caused by a trust subsystem failure. Malformed anchor records and ATS disablement allow TLS connections to succeed without certificate validation, exposing…