Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Synopsys - Security IP

Synopsys - Security IP Vendor Cyber Rating & Cyber Score

synopsys.com

Synopsys provides a broad portfolio of highly integrated security IP solutions that use a common set of standards-based building blocks and security concepts to enable the most efficient silicon design and highest levels of security for a range of products in the mobile, automotive, digital home, IoT and cloud computing markets. Synopsys’ security IP solutions include a range of cryptography cores, security protocol accelerators and processors, embedded security IP modules, secure boot and cryptography middleware as well as content protection IP for integration into system-on-chips. These integrated solutions enable the most efficient silicon design and highest level of security to help prevent a wide range of evolving threats in


SSI A.I CyberSecurity Scoring

SSI
Company Information
Website:http://www.synopsys.com/IP/security-ip
Employees number:7
Number of followers:1,152
NAICS:541514
Industry Type:Computer and Network Security
Homepage:synopsys.com
SSI Risk Score (AI oriented)
Between 700 and 749
logo
SSIComputer and Network Security
Updated:
05/03/2026
748/1000
Moderate
Ba
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
SSI Global Score (TPRM)
xxxx
logo
SSIComputer and Network Security
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

SSI
SSIModerate
Current Score
748Ba (MODERATE)
01000
1 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
747Before Incident
JUNE 2026
748Before Incident
Vulnerability
18 Jun 2026SSI
Apple: iPhone BootROM Vulnerability Opens Door to Full Apple SoC Trust Chain Compromise

Critical iPhone BootROM Vulnerability 'usbliter8' Exposes A12/A13 Devices to Permanent Exploitation

748After Incident
CRITICAL0
APP1781850324
Critical iPhone BootROM Vulnerability "usbliter8" Exposes A12/A13 Devices to Permanent Exploitation A newly disclosed vulnerability in Apple’s SecureROM, dubbed usbliter8, reveals a fundamental flaw in the boot process of iPhones powered by A12 and A13 chips. Research published by Paradigm Shift on June 18, 2026, demonstrates a working exploit that compromises the entire trust chain of the Application Processor (AP), enabling attackers to achieve arbitrary memory writes and full control over device execution. The flaw stems from a misconfiguration in the Synopsys DesignWare USB2 (DWC2) controller, which improperly handles malformed USB Setup packets. While the USB specification mandates 8-byte Setup transactions, the controller accepts smaller packets, writing them in 4-byte chunks. A mismatch in DMA pointer handling creates a controlled buffer underflow, allowing attackers to overwrite adjacent memory in 12-byte increments. Apple’s configuration of the DMA address register (DOEPDMA) as a dynamic pointer rather than a static buffer further exacerbates the issue, enabling unrestricted memory writes into sensitive SRAM regions. Exploitation varies by chipset. On A12 devices, attackers can directly overwrite the saved link register (LR) on the USB task stack, granting straightforward control-flow hijacking. The A13’s Pointer Authentication (PAC) complicates exploitation, but researchers bypassed it by chaining heap corruption, controlled zero writes, and manipulation of system structures including a DART cleanup routine that facilitates memory zeroing. By timing DMA writes and leveraging task scheduling, attackers achieve arbitrary memory overwrites without corrupting critical registers. Once program counter (PC) control is obtained, the exploit escalates privileges within SecureROM. Despite operating primarily at EL0, specific instructions (e.g., SVC 0) allow temporary transitions to EL1. The attack targets a boot trampoline function, injecting shellcode via DMA and bypassing signature checks. On A12, a minimal ROP chain suffices, while A13 requires advanced techniques to circumvent PAC. Post-exploitation capabilities are severe. Attackers can modify the boot process, inject custom USB handlers, execute unsigned iBoot firmware, and introduce new DFU commands including "demotion" to lower device security states. While the Secure Enclave Processor (SEP) remains uncompromised, the attack weakens system-wide trust boundaries, potentially enabling further exploits. Since BootROM is immutable, the vulnerability cannot be patched via software updates. Apple has confirmed coordinated disclosure, but millions of A12- and A13-based devices including iPhone XS, XR, 11, and SE (2nd gen) remain permanently vulnerable. Newer chips (A14 and later) are unaffected due to corrected DART configurations. The research underscores how hardware-level flaws can persist across device lifecycles, bypassing even advanced mitigations like PAC.
INCIDENT DETAILS -
TYPE
Hardware Vulnerability
IMPACT
Systems Affected: iPhones with A12/A13 chips (iPhone XS, XR, 11, SE 2nd gen)Operational Impact: Full control over device execution, boot process modification, injection of custom USB handlers, execution of unsigned iBoot firmwareBrand Reputation Impact: High (permanent vulnerability in millions of devices)Identity Theft Risk: Potential (if further exploits are chained)Payment Information Risk: Potential (if further exploits are chained)
DATA BREACH
Data Encryption: Bypassed (arbitrary memory writes)Personally Identifiable Information: Potential (if further exploits are chained)
MAY 2026
748Before Incident
APRIL 2026
748Before Incident
MARCH 2026
748Before Incident
FEBRUARY 2026
748Before Incident
JANUARY 2026
748Before Incident
DECEMBER 2025
748Before Incident
NOVEMBER 2025
748Before Incident
OCTOBER 2025
748Before Incident
SEPTEMBER 2025
748Before Incident
AUGUST 2025
748Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for SSI ?
?
What was SSI's A.I Rankiteo Cyber Score in June 2026 ?
?
What was SSI's A.I Rankiteo Cyber Score in May 2026 ?
?
What was SSI's A.I Rankiteo Cyber Score in April 2026 ?
?
What was SSI's A.I Rankiteo Cyber Score in March 2026 ?
?
What was SSI's A.I Rankiteo Cyber Score in February 2026 ?
?
What was SSI's A.I Rankiteo Cyber Score in January 2026 ?
?
What was SSI's A.I Rankiteo Cyber Score in December 2025 ?
?
What was SSI's A.I Rankiteo Cyber Score in November 2025 ?
?
What was SSI's A.I Rankiteo Cyber Score in October 2025 ?
?
What was SSI's A.I Rankiteo Cyber Score in September 2025 ?
?
What was SSI's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on SSI's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with SSI ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view SSI's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?