I’ve published a report detailing a critical, unpatched vulnerability in Apple’s iOS activation infrastructure.
It affects all iPhones during initial setup — even after a factory reset, with no jailbreak, no Apple ID, and no MDM.
https://humb.apple.com/humbug/baa
accepts unauthenticated XML provisioning payloadsHTTP 200 OK
and applies persistent, device-level configuration changesThis was submitted to US-CERT (VRF#25-05-RCKYK), Apple, and CNVD. No remediation to date.
I’m sharing this to inform the security community and to preserve the discovery.
Click to Open Code Editor