- Any prerequisites and steps to get the system to an impacted state.
- A reasonably reliable exploit for the issue being reported.
- Enough information for Apple to be able to reasonably reproduce the issue.
Apple opens bug bounty program to all
Apple opens bug bounty program to all
Apple has opened its bug bounty program to all security researches, having previously been invitation-only and limited to iOS vulnerabilities. maximum reward has been increased from $200,000 up to $1 million, which is paid for a zero-click kernel code execution with persistence, Any researcher who discloses a vulnerability must submit a report that includes:A detailed description of the issues being reported.