Infosec says that it reported the vulnerability to Apple on December 23. Now after waiting the standard 90 days, the website says that Apple still hasn’t fixed the bug.
The details on the Common Vulnerabilites and Exposures (CVE) website aren’t available yet. This is because Apple imposed a moratorium on publishing until the bugs were patched. We’ll know more about them in the days ahead.
If you haven’t installed the iOS 10.3.3 update on your iPhone, iPad, or iPod touch yet, hop to it because it including a fix for the BroadPwn Wi-Fi security vulnerability.