Gar Rambo, an app developer and security researcher, discovered a serious vulnerability in Appleβs iOS related to Darwin notifications, an interprocess communication mechanism. This vulnerability could lead to significant disruptions in device functionality and even brick devices. Affected: Apple iOS operating systems
Keypoints :
- Gar Rambo identified a vulnerability in Darwin notifications that could disrupt normal device operations.
- The issue allowed any iOS process, including sandboxed apps, to send notifications without verification.
- Rambo created a proof of concept showing that the vulnerability could soft brick a device, requiring an erase and restore from backup.
- The bug was disclosed to Apple on June 26, 2024, and was fixed in iOS and iPadOS 18.3.
- Rambo was awarded a ,500 bug bounty for his findings.
- Youtube Video: https://www.youtube.com/watch?v=56aDRNgcEBA
- Youtube Channel: https://www.youtube.com/channel/UC3s0BtrBJpwNDaflRSoiieQ
- Youtube Published: Mon, 05 May 2025 16:00:06 +0000