M1ssing Register Access Controls Leak EL0 State

M1RACLES (CVE-2021-30747) is a covert channel vulnerability in the Apple Silicon “M1” chip.

This is a hardware silicon vulnerability 'baked' into the M1 (and A14) cpus, and no software mitigation is possible (save, possibly, running a VM on the bare metal and running your macOS or iOS in the VM, and losing performance). Lots of explanatory material in the article, and a proof of concept video, and a FAQ section.

It will be interesting if the M1X or M2 will have fixed the issue.

Fun times...

---

=TC

Right at the top of the page:

CVE-2021-30747
Should you be worried? Probably not.

---

Edited 999 time(s). Last edit at 12:08PM by jdc.



Edited 1 time(s). Last edit at 05/30/2021 11:21PM by jdc.

Can malware use this vulnerability to take over my computer?

No.

Can malware use this vulnerability to steal my private information?

No.

Can malware use this vulnerability to rickroll me?

Yes. I mean, it could also rickroll you without using it.

Can this be exploited from Javascript on a website?

No.

Can this be exploited from Java apps?

Wait, people still use Java?

Can this be exploited from Flash applets?

Please stop.

---

Playing the Bad Apple video to demo the vulnerability was very entertaining!