From d450fb9beb7b00482cb4dd8f5f87ad81cf83fd6d Mon Sep 17 00:00:00 2001
From: Joseph Goydish II <josephgoyd@proton.me>
Date: Tue, 23 Sep 2025 00:24:39 -0400
Subject: [PATCH] Create README.md

---
 README.md | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 README.md

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..a46a94e
--- /dev/null
+++ b/README.md
@@ -0,0 +1,31 @@
+# Apple iOS Activation Infrastructure Vulnerability
+
+## Summary
+A **critical vulnerability** in Apple’s iOS activation backend allows injection of unauthenticated XML `.plist` payloads during the device setup phase.  
+The flaw permits arbitrary provisioning changes without authentication, signature verification, or error feedback — exposing devices to **pre-activation tampering** and **persistent configuration manipulation**.
+
+---
+
+## Affected Product
+- **Vendor:** Apple  
+- **Product:** iOS Activation Infrastructure  
+- **Endpoint:** `https://humb.apple.com/humbug/baa` (Apple internal)  
+
+---
+
+## Core Issue
+- The server at `https://humb.apple.com/humbug/baa` accepts unauthenticated XML payloads.  
+- This enables **silent provisioning changes** during activation.  
+- **Impacts include:**
+  - Modem configuration  
+  - CloudKit token behavior  
+  - Carrier-level protocol enforcement  
+
+⚠️ No jailbreak, malware, or user interaction required.
+
+---
+
+## Implications
+- **Supply chain compromise potential**  
+- **Bypasses enterprise MDM and hardening policies**  
+- **Persistent, pre-user compromise vector** during the trusted setup phase