According to researchers, a security flaw that Apple cannot fix, was found in older iPhone models.
An independent European cybersecurity firm, Paradigm Shift, published reports on their blog on Thursday.
Flaws were tested in the USB controller and the firmware of the device. This was done to override the boot process when the phone is switched on.
Apple also attempted to access control over the device before the load screen of the iOS.
The problem was found within SecureROM, the code that runs when an iPhone is switched on. This code also comes embedded in some chips.
It is important to note that this flaw cannot be fixed as Apple cannot extract the code from the chips.
Chips that fall under this security flaw are A12 and A13.
Which iPhone models are affected?
iPhone models that are at risk include iPhone 11, iPhone 11 Pro, iPhone 11 Pro Max, Second generation iPhone SE, iPhone XR, iPhone XS and XS Max.
Some iPad and Apple Watch models that have the S4 and S5 chips are also vulnerable.
iPad and Apple watch models that are exposed to the security risk are eighth and ninth generation iPad, third generation iPad Air, fifth generation iPad Mini, first and second generation 11-inch iPad Pro, first generation Apple Watch SE and Apple Watch Series 4 and 5.
The cybersecurity firm has said that technical support for A12X and A12Z chips may be possible. However, it has not been implemented.
iPad Pro Models 2018 and 2019 are also affected.
Physical access is needed for the exploit to work, Paradigm Shift added.
Attackers can use different paths to take advantage of Apple’s Secure Enclave Processor that stores passcodes along with encrypted data.
The research firm has also suggested that users who want to avoid this security threat, should just get a new iPhone model.
Read more: iPhone prices in Pakistan likely to rise more in 2026
