[yieldcrv]

from what they demonstrated, this seems to only be a $100,000 exploit in Apple's bug bounty platform, but if they package it right, it could be a $1.5 million exploit

They simply have to show it against a beta version of MacOS, and frame it as unauthorized access, and maybe from locked mode if possible

[vsgherzi]

This is an lpe I believe what you’re describing is a zero click rce.

[yieldcrv]

how much do you think it is worth in the bug bounty program

[vsgherzi]

They don’t seem to state lpe as one of the bugs. Maybe 100k? There’s alot of factors that go into it so I’m really not able to say. I could see it going for lots more or lots less