Business

OnePlus confirms OnePlus 6 bootloader vulnerability, says fix incoming

OnePlus has officially acknowledged a bootloader vulnerability plaguing its OnePlus 6 flagship smartphone, saying a software update containing a fix for the problem will roll out soon. Here’s what exactly the company has said:

We take security seriously at OnePlus. We are in contact with the security researcher, and a software update will be rolling out shortly.

The vulnerability, for those who aren’t aware, allows someone with physical access to a OnePlus 6 device to boot any arbitrary modified image without unlocking the device bootloader, effectively giving the attacker complete control over the phone.

The #OnePlus6 allows booting arbitrary images with `fastboot boot image.img`, even when the bootloader is completely locked and in secure mode. pic.twitter.com/MaP0bgEXXd

Edge Security (@EdgeSecurity) June 9, 2018


Source | Via