What is the usbliter8 exploit and why it matters
The usbliter8 exploit is an unpatchable iPhone BootROM vulnerability in Apple’s A12 and A13 chips that lets attackers run arbitrary code during SecureROM boot, but only when they have physical USB DFU access to the device. Disclosed by security firm Paradigm Shift, the bug lives in SecureROM, the immutable first-stage boot code burned into silicon at manufacture, so no iOS update can reach it. According to Paradigm Shift, usbliter8 is the first publicly documented iPhone BootROM exploit since 2019’s checkm8 and affects millions of iPhones and other Apple devices using A12, A13, S4, and S5 SoCs. While this unpatchable security flaw breaks the secure boot chain and enables low-level control, it does not allow remote compromise over the internet or through apps, which sharply limits its real-world abuse potential for most users.

How the iPhone hardware vulnerability works under the hood
The usbliter8 exploit abuses a hardware bug in the Synopsys DWC2 USB controller integrated into Apple’s A12 and A13 system-on-chips. During Device Firmware Update (DFU) mode, the controller buffers up to three USB setup packets using DMA, then resets its write pointer on the fourth by subtracting a fixed 24 bytes. It also accepts smaller-than-normal packets and advances the pointer only by the actual bytes, creating a controlled buffer underflow that walks the write pointer backward through memory in 12-byte steps. On vulnerable chips, Apple’s USB DART IOMMU runs in bypass mode inside SecureROM, so this underflow lets attackers overwrite arbitrary SRAM. On A12, the DMA buffer sits next to the USB task’s stack, so overwriting a saved return address gives direct code execution. On A13, Pointer Authentication Codes force a more complex, multi-step heap attack to seize control of the global interrupt handler.

Which iPhones and devices are affected by usbliter8
The A12 A13 chip exploit impacts a long list of older but still common Apple devices. On the iPhone side, affected models include the iPhone XS, XS Max, XR, the entire iPhone 11 lineup (11, 11 Pro, 11 Pro Max), and the second‑generation iPhone SE. Paradigm Shift’s public proof of concept also targets A12-, A13-, S4-, and S5-based products such as the iPad Air 3rd gen, iPad mini 5th gen, iPad 8th gen, Apple Watch Series 4 and 5, the first‑generation Apple Watch SE, and HomePod mini. Support for A12X and A12Z in certain iPad Pro models is described as possible but not yet implemented. A11 chips avoid the problem thanks to a different USB driver design, and A14 or newer devices appear safe because DART is configured correctly in SecureROM, blocking the underlying memory corruption path.

Why the BootROM flaw can’t be patched with iOS updates
This iPhone hardware vulnerability is unpatchable in software because it resides in SecureROM, the first piece of code the chip runs at power‑on. SecureROM is stored in read‑only memory fused into the silicon; it is not flash and cannot be updated after manufacture. That means the usbliter8 exploit, like checkm8 before it, will remain usable for the lifetime of every affected device. Apple can and likely will harden higher boot stages and iOS itself to limit what attackers can do after triggering the bug, but it cannot fix the root cause without new hardware. For owners of A12 and A13 devices, there is no system update that removes the flaw. The only complete mitigation is to migrate to newer hardware with A14 or later chips, where DART is enabled at the BootROM level and the exploit path is blocked.

What physical DFU access means and how to protect yourself
Although usbliter8 is a serious iPhone BootROM vulnerability, it is not a remote iOS exploit. An attacker needs physical possession of the device, the ability to place it into DFU mode, and a USB connection to a prepared RP2350-based microcontroller or similar tool. The exploit then runs in under two seconds, before the signed boot chain or iOS security features load. For everyday users, the risk is highest from thieves, stalkers, or insiders with unsupervised hands-on access, not from phishing emails or malicious websites. To reduce exposure, keep your iPhone and iPad physically secure, use strong device passcodes, and avoid handing an unlocked phone to people you do not trust. If you rely on strong hardware security guarantees and use an A12 or A13 device, planning an upgrade to a newer model is the most effective long‑term mitigation.






