▲ 6 r/bugbounty
Has anyone recently reported a security vulnerability to Apple? How was the experience?
Apple’s reputation in the bug bounty community wasn’t exactly stellar in the past. A well-known example is the 2021 Denis Tokarev (illusionofchaos) incident. Within the past year——How has everyone’s experience been with submitting vulnerabilities to Apple? Have any of the following situations come up?
- Silent Patching
- No credit or CVE will be assigned
- Response is extremely slow
- The bounty is far below expectations.
- Delayed Payment
u/secpoc — 3 days ago