- Any prerequisites and steps to get the system to an impacted state.
- A reasonably reliable exploit for the issue being reported.
- Enough information for Apple to be able to reasonably reproduce the issue.
1 post • Page 1 of 1
Apple has opened its bug bounty program to all security researches, having previously been invitation-only and limited to iOS vulnerabilities. maximum reward has been increased from $200,000 up to $1 million, which is paid for a zero-click kernel code execution with persistence, Any researcher who discloses a vulnerability must submit a report that includes:A detailed description of the issues being reported.