Apple Stiffs Researcher on Bounty for iOS Kernel Vulnerability

“Meysam”, on Twitter/X:

I reported CVE-2024-27804, an iOS/macOS kernel vulnerability that
leads to the execution of arbitrary code with kernel privileges.

Will publish the POC soon.

Maybe there’s more to this story, but it sure is a bad look for a $3 trillion company to have a reputation for finding technicalities to avoid paying bug bounties.

I would think Apple would want to err on the side of being liberal with bug bounty payouts, to encourage researchers to report as many as they can find.

★

“Meysam”, on Twitter/X:

I reported CVE-2024-27804, an iOS/macOS kernel vulnerability that
leads to the execution of arbitrary code with kernel privileges.

Will publish the POC soon.

Maybe there’s more to this story, but it sure is a bad look for a $3 trillion company to have a reputation for finding technicalities to avoid paying bug bounties.

I would think Apple would want to err on the side of being liberal with bug bounty payouts, to encourage researchers to report as many as they can find.

★

daring-rss

Recent Posts

Recent Comments

Four Female Athletes Were Killed in Kenya. There Are Fears They Won’t Be the Last.

Colorado’s Travis Hunter Is in a League of His Own, on Both Offense and Defense

Small Modular Nuclear Reactor Partnership Announced between America and Ukraine

Categories

Archives

Recent Posts

Recent Comments

Four Female Athletes Were Killed in Kenya. There Are Fears They Won’t Be the Last.

Colorado’s Travis Hunter Is in a League of His Own, on Both Offense and Defense

Small Modular Nuclear Reactor Partnership Announced between America and Ukraine

Categories

Archives

Apple Stiffs Researcher on Bounty for iOS Kernel Vulnerability

Leave a Reply Cancel reply

Archives

Categories