Overview​

The Corellium 7.3.1 release expands platform capabilities with full support for Apple iPadOS 16–18 and the addition of iOS 18.3.2 to our Apple lineup. This update also introduces iOS Camera Passthrough and media file upload support, enhancing testing workflows. Additionally, Corellium MATRIX advances with compliance mapping, allowing security findings to be correlated with industry-standard frameworks for improved traceability. These enhancements further strengthen Corellium as a comprehensive platform for mobile app development, testing, and security research.

• Updated usability to gain parity with the 7.3.0 cloud release
• 18.4.0 beta1-rc2 (on-prem Premium Only customers)

Overview​

The Corellium 7.3.0 release expands platform capabilities with full support for Apple iPadOS 16–18 and the addition of iOS 18.3.2 to our Apple lineup. This update also introduces iOS Camera Passthrough and media file upload support, enhancing testing workflows. Additionally, Corellium MATRIX advances with compliance mapping, allowing security findings to be correlated with industry-standard frameworks for improved traceability. These enhancements further strengthen Corellium as a comprehensive platform for mobile app development, testing, and security research.

Updated Support for iPadOS, iOS and Device Models​

• New models (cloud customers)
  • iPhone 16e
  • iPad Mini 5
  • iPad Mini 7
• New Versions (cloud customers)
  • iPadOS 16.x
  • iPadOS 17.x
  • iPadOS 18.x
  • iOS 18.3.2

New Features​

1. New iPad models and iPadOS Support

   • New iPad Mini 5 and Mini 7 models run iPadOS 16.x, 17.x and 18.x.
   • Allows for the installation and testing of iPadOS specific mobile apps

2. iOS Camera

   • All iOS devices support Microphone.

   • Camera support is limited to newly created devices in the 7.3 release.

   • The following iOS device/version combinations are currently supported:

     • iPhone 8 running iOS 16.x
     • iPhone 8 Plus running iOS 16.x
     • iPhone SE (2020) running 16.x, 17.1.0, and 18.1
     • iPhone SE (2022) running 16.x, 17.1.0, and 18.1

   • On iOS, configure the camera in the VM to “Most Compatible” format: Settings → Camera → Formats → Camera Capture → Most Compatible. See our Camera Support for details.

MATRIX​

Compliance Mapping​

We have enhanced MATRIX by tagging each Check and Artifact with corresponding mobile security compliance standards. This provides greater clarity and traceability during security assessments.

Supported Standards Include:​

• OWASP MASTG: The Mobile Application Security Testing Guide defines best practices and test cases for mobile app security testing on iOS and Android.
• OWASP MASWE: The Mobile Application Security Weakness Enumeration lists common security and privacy weaknesses in mobile applications.
• CVE: Common Vulnerabilities and Exposures is a database of publicly known vulnerabilities.
• CWE: The Common Weakness Enumeration categorizes underlying weaknesses that can lead to vulnerabilities. MITRE maintains the CVE and CWE, sponsored by the U.S. DHS.

Split APK Support​

• MATRIX now supports Split APKs, Google Play’s method for reducing app size by dividing apps into smaller components. Previously, scans failed on Corellium devices with Split APK installations. This update enables full security testing for apps using this delivery method.

Other Enhancements​

End-of-Life (EOL) & End-of-Support for Select Apple Devices & iOS Versions​

Cloud Customers​

• iOS 10–14: These versions have reached End-of-Life (EOL) and are no longer accessible on our cloud platform. Users are encouraged to upgrade to newer iOS versions for continued access and improved security.

• iPhone 6 & 6 Plus: These devices have also reached EOL and are no longer supported due to the deprecation of iOS 10–14.

Onsite Customers​

• iOS 10–14: These versions have entered End-of-Support (EOS), meaning future software updates will no longer include support for these operating systems. However, devices can be manually re-included by contacting our support team.

• iPhone 6 & 6 Plus: These devices have also reached EOS and will be removed from the IPSW Loader by default in future updates. Manual inclusion is available upon request.

• This change ensures that our services remain secure, efficient, and aligned with current technology standards.

Continued Support & Recommendations​

Supported Devices​

• iPhone 6s, 6s Plus, and SE will continue to receive full support as they remain compatible with iOS 15. Users can rely on these devices without service disruptions.
• Ongoing updates and support will ensure optimal performance and security for these models.

Recommendations​

• Upgrade: Consider updating your devices or OS to access the latest features, improved performance, and extended support.
• Transition Plan: If impacted by EOL or EOS, develop a transition strategy to avoid service disruptions.
• Contact Support: For onsite re-inclusion requests related to EOS, reach out to our customer support team for assistance.

We appreciate your understanding as we implement these changes and thank you for your continued partnership.

Note: This statement is subject to change based on future updates in device compatibility or policy amendments. Always refer to our latest communications for the most up-to-date information.

Additional Updates​

Networking Mode Options for SA Clusters​

• System Administrators can now change the Network Mode directly from the Installer.

Bug Fixes & UI Enhancements​

• Various underlying bugs have been resolved to improve stability and performance.

• Minor UI enhancements provide a more intuitive and user-friendly experience.

Overview​

This release of Corellium introduces several significant updates, including enhanced security features, improved integration with external systems, support for all the latest iOS versions, and various bug fixes and UI enhancements.

Added Support for iOS up to 18.3.1​

• Corellium now supports the latest iOS versions, ensuring compatibility with the most recent updates.
• Users can analyze the latest iOS devices without compromising functionality or security features.

New Features​

1. Added SAML Support

   • Corellium now supports SAML (Security Assertion Markup Language) authentication, providing secure single sign-on capabilities.
   • Integrates seamlessly with Identity Providers like Okta, OneLogin, and Azure AD.
   • Enhances security by leveraging industry-standard protocols for user authentication.

2. Admin Interface: User Activity Logger - A new activity monitoring system has been integrated into the Admin interface. This enhancement provides administrators with detailed insights into user interactions across the platform.

   • Track and view user actions.
   • Improve security auditing and compliance reporting.
   • Identify potential issues or unusual behavior quickly.

3. LDAP Authentication Integration - We've implemented enterprise-grade LDAP authentication, enhancing security and streamlining user access management across the platform.

   • Seamlessly map your organization's existing LDAP groups to Corellium roles.
   • Maintain consistent access control policies across your infrastructure.
   • Simplify user permissions management through centralized RBAC.

4. VLAN Tagging for Network Isolation - We've introduced VLAN tagging capabilities at the project level, enabling enhanced network segmentation and isolation for on-premise deployments.

   • Configure VLAN tags at the project scope.
   • Maintain separate network domains for distinct workloads.
   • Seamlessly integrate with existing network infrastructure.
   • Available for select enterprise customers.

Contact your Account Representative for enablement. Network administrator configuration may be required.

MATRIX​

• New Check for Android Code Signing Artifacts

  • A new feature has been introduced to gather code signing artifacts from Android applications.
  • This addition adds in thorough security analysis by extracting relevant information for compliance and audit purposes.

Other Enhancements​

1. Enhanced Crash Report Analysis - We've significantly improved our crash reporting system by integrating disassembly information directly into crash reports, providing deeper insights into application behavior and failure points.

   • Direct access to disassembled code at crash locations.
   • Immediate visibility into instruction-level execution context.

2. Bug Fixes and Minor UI Enhancements

   • Various underlying bugs have been resolved to improve stability and performance.
   • Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

We’re excited to announce the latest updates and improvements in Version 7.1.0!

This release introduces powerful new features, enhanced functionality, and critical bug fixes to ensure you have the best possible experience.

The 7.0.3 patch release for on-site appliances contains the following:

• Firmware services reliability improvements
• Fixed an Ubuntu 24 upgrade issue for hostnames that contain underscores

• Updated usability to gain parity with the 7.0 cloud release
• Improved on-site upgrade installation experience
• On-site appliance OS upgrade to Ubuntu 24 (Click here to download instructions)
• Logging improvements
• Known issue: Booting iPhone 16 when PAC is enabled is not supported

• Added support for the iPhone 16 family of hardware
• Added support for iOS 18.0.1 and 18.1

This patch release for on-site appliances improves the following:

• fwservice and fwupdater services are more reliabile and faster.
• Fixed a bug in the Create User API and UI workflows.
• Charm Development Kits no longer throw errors when cloning certain snapshots.

We are excited to announce several important updates to AVH. These changes aim to streamline your experience, ensure better service, and enhance how you interact with the platform.

iOS 18 is now available​

We're excited to announce the support of iOS 18.0 build 22A3354!

Dynamic Consoles​

Added support for Dynamic Consoles, allowing you to select from multiple consoles on devices where available.

MATRIX​

We made a stack of iterative improvements to our MATRIX feature!

• Added support for downloading JSON to History page
• Added tooltips to report statuses
• Added pagination to improve UI
• 2 new Android checks
• 5 new iOS checks
• Improved check outputs
• Lots of bugfixes and improvements

Enhanced Plan Offerings​

We have enhanced our plan offerings to better align with our customers’ budgets, feature requirements, and environment needs. We now provide a diverse range of plan levels, ensuring that our customers can find options that meet both their financial and operational needs.

This version requires you to install Corellium 6.4.0 first.

iOS 18 Beta Support​

Customers with Premium licenses can now run both jailbroken and non-jailbroken iOS 18 beta firwares (build 22A5307).

This version requires you to install Corellium 6.4.0 first.

LDAP Authentication​

Corellium is happy to annoumce that we now support LDAP as an addition to our SSO offerings.

For more information about how to configure LDAP please see our documentation.

MATRIX Improvements​

We've been working hard on making MATRIX more powerful, robust, and interactive. Here are some things you can look forward to in this release.

This month's update includes two features - one that we have had enhanced in beta for a few months now, called MATRIX, and one that is new to our platform called Snapshot Sharing.

MATRIX​

If you've been playing with this feature, you may have seen it referred to in our application as MAST (Beta). Today, we're formally rolling out our name for this feature, MATRIX, which stands for Mobile Application Testing and Reporting Interface.

MATRIX now includes 8 new Android checks and 4 new iOS checks.

Today we're rolling out Corellium version 6.2.1 for on-premise and desktop appliances.

Android Live Snapshots​

Live snapshots capture the state of a virtual device's RAM and filesystem. Corellium can resume live snapshots in the same state as when they were suspended, including running apps. We're bringing Live Snapshots, a feature previously only available on iOS devices, to Android.

UI/UX Enhancements​

This months updates include some great UI/UX changes to our app to amp up your experience. We've revamped the way you navigate and interact with our platform whether you use a keyboard, screen reader, or just want a smoother, more user-friendly experience.

UI/UX Enhancements​

For this round of updates, we're taking into account the considerable feedback we've gathered from you, our customers. In response to this valuable feedback, we've made some focused improvements to our web interface to help you better understand the state of your devices and to provide more visibility around device hours and burst usage.

Virtualize iOS 17.4 Devices​

Premium On-Site and Desktop Appliance support has been extended to include up to iOS 17.4 Beta.

MATRIX (Beta) for Cloud​

We have released our automated mobile app security testing tool, known as MATRIX, to our Business Cloud customers. Available for both iOS and Android devices, MATRIX drastically reduces the effort, cost, and time required to perform professional-grade penetration testing.

MATRIX (Beta) Improvements​

This time around, we've introduced a set of automated bug fixes for MATRIX (Beta) to enhance your experience, exclusively made available to on-premises customers. These fixes include but are not limited to:

• Corrected an issue where the evidence would be missing in the report from a failed check
• Fixed API traffic routing

This release includes new firmware, Microsoft Entra SSO support, UI changes, and other improvements.

Virtualize iOS 17.2.1 Devices​

We have added support for iOS 17.1, 17.1.1, 17.1.2, 17.2, and 17.2.1. You can now create devices using the latest iOS firmware for all compatible devices.

Virtualize Android 14 Devices​

We have also added support for Android 14. You can now create devices using the latest Android firmware.

This release includes our MATRIX Beta; as well as new firmware, UI changes, and other improvements.

MATRIX (Beta)​

Introducing the beta of our new MATRIX solution for DevSecOps! You can use Corellium to test your mobile applications on a wide range of devices without the need to purchase and maintain physical devices.

Version 5.6.0 is now live. Find out what's new!

Introduced iOS 17.1 and iOS 17.1.1 Support​

We're excited to announce that cloud customers can now create iOS 17.1 and iOS 17.1.1 devices. Happy Virtualizing!

Corellium proudly presents iPhone 15 devices! iPhone 15, 15 Plus, 15 Pro and 15 Pro Max, along with iOS up to version 17.0.3

• Corellium is proud to announce iOS 17 support, up to 17.0.2
• Improved SSO beta support for Auth0, Okta, Azure AD B2C, and PingIdentity
• iOS microphone support
• Android fingerprint peripheral support
• Upgrade Frida on iOS to 16.1.3
• Bug fixes and enhancements
• We are aware of an intermittent kernel panic issue affecting iOS 16.x.

• Corellium is proud to announce iOS 17 support, up to 17.0.2
• Graviton 3 support
• Guided onboarding
• A new home screen
• iOS microphone support
• Android fingerprint peripheral support
• Upgrade Frida on iOS to 16.1.3
• Bug fixes and enhancements
• We are aware of an intermittent kernel panic issue affecting iOS 16.x.

• Official beta support for on-premises SSO with Auth0 (Okta)
• Improved iOS Beta support

iOS 17 Beta is now available for on-premises customers.

• Debug Accelerator
• Advanced Network Monitor
• Update the iOS version
• Restore a physical iOS backup to a Corellium device

• Debug Accelerator - Reduces the effect of network latency and makes debugging from Mac, Linux, and Windows laptops faster and more natural.
• Android Screen Rotation - Support for screen rotation on our virtual Android devices.
• Advanced Network Monitor - Capture all network traffic from our virtual devices in addition to HTTP(s), for both iOS and Android. (Enterprise and Premium Editions)
• Update iOS Version - You can now perform an in-place iOS update on your virtual devices for introspection and testing during OS updates. (Enterprise and Premium Editions)
• Restore iOS Backup - You can now restore backups from your physical iOS devices to our virtual iOS devices. (Enterprise and Premium Editions)
• Single Sign-On - Beta release of support for OpenID Connect via Auth0. (Standard, Enterprise, and Premium editions)
• iOS 16.5 Support

• A revamped billing system based on device hours
• A new design for our web interface

• Add iOS 16.4 and iOS 16.4.1 firmware support
• Add iOS 16.5 beta firmware support for Premium Edition customers
• Add a non-rooted Android option
• Improve Android GPS sensor operation
• Upgrade Frida on iOS to version 16.0.11
• Various UI/UX enhancements

• Released the Corellium Webplayer (learn more here)
• Added iOS 16.3 and iOS 16.3.1 support for cloud customers
• A new cloud-based experience for on-premises customers
• Users can now set device location to “my location”
• Users can now download the console log output
• Add the license type to the user's profile dropdown
• Miscellaneous bug fixes and improvements

In this minor release, we fixed a CoreTrace bug.

Corellium is ready to show the following updates, made available to our on-premises customers:

• Multi-node installer update
• Kernel upload enhancement
• UIUX improvements
• Various minor bug fixes

Corellium introduces support for iOS 16.3, available for on-premises customers.

• Various UI/UX enhancements
• Performance improvements
• Bug Fixes

In this on-premises release, Corellium is proud to present:

• iOS 16.2 enhancements
• Performance improvements
• UIUX updates and enhancements
• Fixed a PAC panic issue affecting the iPhone 14 and iPhone 14 Pro Max

Corellium is excited to release Version 4.0, which includes support for Webplayer (Enterprise customers only) and iOS 16.2.

Support for iOS 16.2 is now available for our on-premises customers.

Implemented a documentation fix.

Support for iOS 16.1 and Android 13 is now available on our cloud platform!

The highly anticipated releases of iOS 16.1, 16.2 Beta, and Android 13 are now supported.

This release fixes an issue with IOMMU passthrough on On-Site Deployments.

Corellium is proud to announce iPhone 14 and iPhone 14 Pro support, improvements to the device boot process, and performance improvements.

This release was removed.

Offered exclusively to customers with On-Site Deployments, 3.13.2 provides iOS 16 support, improvements to the device boot process, and performance improvements.

With the 3.13.1 release, we announce iOS 16 support for cloud customers as well as improvements to the device boot process.

The 3.13 release includes preparation for iOS 16 support, design enhancements to the user interface, and performance improvements.

Corellium introduces support for iOS 16 Beta 5. This release is available as a beta exclusively to customers with On-Site Deployments.

Corellium unveils various new changes to the user interface and user experience with version 3.12.1.

Corellium is excited to add support for the new iOS 16. This new release is available as a beta exclusively to customers with On-Site Deployments.

This release adds Quick Connect SSH tunneling, a Rotate button for iOS, XPC support for CoreTrace on iOS, and OpenGApps for Android 12.

Our latest release adds website improvements, an API update, bug fixes, and a new user profile page.

Corellium version 3.9.0 contains updated Frida support as well as bug fixes and improvements to the user experience.

For this release we have added support for iOS 15.4 and 15.4.1.

The Corellium team is excited to announce the release of many user experience improvements, simulate receiving SMS to iOS, frames of various Android devices, Android 12 upgrade, as well as bug fixes.

In this latest release, we've added iOS 15.3 and iOS 15.3.1, STUN for WebRTC to allow for functional displays in strict firewall environments, improved snapshot functionality, added a start timestamp to the instance object on the Corellium-API, and other various bug fixes.

We are excited to announce in this release that we've added Pop-Out Displays for Virtual Device Screens, and a bug fix for cloning Snapshots.

This release provides iBoot for iPhone 12, improved API instructions for on-premises customers, and bug fixes for custom kernel uploads & API internet access toggling.

In this release, we've added support for iPhone 13 and iOS peripherals, including Biometrics and Accelerometer. We also improved our error handling.

Our latest release brings support for iOS 14.8 and iOS 15, as well as support for GPS on iOS device.

This update only applies to the cloud.

• Enables GPU acceleration for all Android devices on Enterprise accounts
• Enables mixed Graviton clusters

This update adds support for iOS 14.7 and iOS 15. Since iOS 15 is still in beta, it's only supported for on-premises customers.

In this update, we're very excited to add support for Sensors and Camera for our virtual Android devices, as well as beta support for Android 12!

• Added the ability to export a pcap of the log from the Network - Monitor tool
• Fixed a bug that caused some apps to timeout on launch on iOS 14.5.1 with PAC enable

• Improve the load time of images in the Create Device modal
• Increase trial time from one hour to six hours
• Fix a Frida-related panic on iOS 14.5+ and enable integrated Frida tab on 14.5+
• Disable certificate pinning by default for applications on jailbroken iOS devices
• Automatically connect to the device display
• Support for KASLR

• Adds support for iOS 14.5
• Improves CoreTrace reporting on XNU and Linux
• Increases minimum password length for accounts
• Adds support for multiple connections to a project or instance via the same openvpn client configuration

This cloud-only release provides support for variable screen sizes in the API, as well as minor bug fixes.

• Support for variable screen sizes in the API
• Support for toggling GPU acceleration per domain
• Fixed a bug that caused Network Monitor to be displayed for non-jailbroken no-agent devices
• Fixed an issue with the API that allowed users to create projects without a name
• Fixed an issue that prevented re-subscribing after canceling a usage-based account
• Fixed a bug that caused Enterprise Team Leads to see an option to invite users and manage teams when this functionality was not available at this permission level

This release provides support for 14.5 betas and Network Monitor for iOS.

• Added support for 14.5 betas 1 and 2
• Added support for Network Monitor for iOS-based device models
• Fixed a bug that could cause errors in upgrading on-premises installations
• Fixed backwards compatibility with iOS 14.0 betas

This release provides on-premises customers with the new ability to load their own models to the hypervisor. It also adds support for copying and pasting data to iOS-based device models.

• Added support for loadable firmware models for on-premises customers
• Added Copy/Paste for iOS devices. Note that for both Android and iOS-based device models, copy/paste behavior is inconsistent across different web browsers. In particular, data is unable to be pasted into a VM in the Firefox browser, and data is unable to be copied out of a VM in the Safari browser.
• Fixed a bug in switching from monthly to usage-based subscriptions
• Fixed a bug that prevents resubscribing after cancelling a usage-based account
• Fixed a bug that could cause snapshots to becoming stuck in a Restoring state
• Fixed a bug causing incompatibility between A14 iPhone device models and Xcode
• Fixed a bug that caused graphical glitches in apps that use WKWebview
• Implemented missing ACM protocol extensions and messages for iOS-based device models
• Rebased the Ranchu Linux kernel branches

This update provides support for iOS 14.4 and adds Frida support for iOS-based devices.

• Added support for Frida console for iOS devices
• Added support for iOS 14.4
• Enabled PAC for iPhone 12
• Fixed an intermittent bug causing A14-based models to freeze during restore in Graviton environments
• Fixed an error causing IPSWs to fail to upload in Graviton environments
• Fixed an error causing iPhone XR and XS device models to panic when APRR was set

This update provided minor bug fixes for the cloud.

• Fixed an NVMe panic after pause or reboot from a READ timeout
• Fixed a bug that caused ffmpeg to cause unknown device error
• Fixed a bug that cause the Kill button in the app tab to occasionally not respond to a click
• Added a connection token to vstrm servers, telegfx, and crlm-stream
• Resolved an issue with a device that was stuck in the Deleting state

We're very excited to announce that this release brings Apple device models to Individual accounts. With this release, Individual accounts will also see new advanced settings, including the ability to upload custom kernels and ramdisks. In addition, all accounts will now be able to adjust the number of CPU cores and the amount of RAM assigned to generic Android devices.

This update brings Enterprise customers support for the Apple A14 devices, including iPhone 12, iPhone 12 mini, iPhone 12 Pro, and iPhone 12 Pro Max. It also implements encryption for AWS S3 backed volumes, and fixes some minor bugs in iOS 14 support.

With this update, we're very excited to now offer Usage-Based Billing for our cloud subscribers. Users can now subscribe to Individual or Enterprise Usage-Based accounts, where devices they create are charged for on an hourly basis. Please visit the Subscription page in your account to view additional details about subscribing to Usage-Based accounts.

In this release, a key highlight is that users are now allotted Stored Device slots, enabling users to store Off devices without occupying CPU cores. For each On device permitted on the user's account, up to 5 total devices can be stored. For example, a user with a 3-device Individual account will now have 15 "stored device" slots. Note that On devices count toward the total stored device count, so a user with a 3-device account could have 3 On devices and 12 Off devices.