OnePlus has officially acknowledged a bootloader vulnerability plaguing its OnePlus 6 flagship smartphone, saying a software update containing a fix for the problem will roll out soon. Here’s what exactly the company has said:
We take security seriously at OnePlus. We are in contact with the security researcher, and a software update will be rolling out shortly.
The vulnerability, for those who aren’t aware, allows someone with physical access to a OnePlus 6 device to boot any arbitrary modified image without unlocking the device bootloader, effectively giving the attacker complete control over the phone.
The #OnePlus6 allows booting arbitrary images with `fastboot boot image.img`, even when the bootloader is completely locked and in secure mode. pic.twitter.com/MaP0bgEXXd
Edge Security (@EdgeSecurity) June 9, 2018
Source | Via