If it's anything like the old days, they don't need to horde a 0 day.
There were always obscure pieces of software that would pull your forgotten pin right off the device with the right secret code, in which case you have full access to the device.
I'd also expect them to be vulnerable to much simpler attacks like just reading flash chips directly
There were always obscure pieces of software that would pull your forgotten pin right off the device with the right secret code, in which case you have full access to the device.
I'd also expect them to be vulnerable to much simpler attacks like just reading flash chips directly