Back to directory

WRITEUP #1546

Hacking Apple: Two Successful Exploits and Positive Thoughts on their Bug Bounty Program

RCESecurity misconfiguration

by@infiltrateops(Joe Gregg)

Program

Apple

Published

Feb 16, 2023

Added to HackDex

Feb 22, 2023

Read Full Writeuphttps://blog.infiltrateops.io/hacking-apple-two-successful-exploits-and-positive-thoughts-on-their-bug-bounty-program-963efe7518f6

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

Built with ❤️ by Shubham Rawat