Recently launched OnePlus 6 has a serious vulnerability in its bootloader that makes it possible for someone to boot modified images to take full admin control of user’s phone even if the bootloader is locked.
What is a bootloader? How is it vulnerable in One Plus 6?
A bootloader is a part of Android built-firmware and it is the first thing that runs when you boot up your Android device. Locking a bootloader prevents anyone from modifying the phone’s operating system.
Researchers have discovered that the bootloader on OnePlus 6 is not entirely locked thus allowing anyone to modify boot image without even having to turn on USB debugging, thus taking full control of your device.
The vulnerability, however, can be exploited only when someone has a physical access to your OnePlus 6. The vulnerability would require plugging the phone into a computer, restarting the phone into fastboot mode and then transfer any arbitrary or modified boot image.
OnePlus has acknowledged the vulnerability and promised to release a software update shortly.
Comments from Ankush Johar, Director at Infosec Ventures – an organisation that provides complete infrastructure security solutions for commercial and government clients of all sizes
OnePlus 6 users should be extra cautious and make sure that their device is not in the wrong hands, especially until a patch is released. Moreover, users are strongly advised to update their software as soon as the patch is released because the absence of a bootloader lock, attackers might be able to modify the OS without actually needing to wipe the device storage further gaining complete root access to the device.
Your email address will not be published. Required fields are marked *
Notify me of follow-up comments by email.
Notify me of new posts by email.
Sign me up for the newsletter!
Netmeds.com acquires health tech start-up KiViHealth
Hopscotch India Presents First Ever Kids Fashion Show At Bombay Times Fashion Week
KARAN V GROVER TO PLAY SHRENU PARIKH’S HUSBAND IN STARPLUS’ EK BHRAM SARVAGUN SAMPANNA
AAP International organizes a felicitation programme to honour ACP Govind Sharma and SHO Anant Kumar for their unflinching support to the elderly people
Shama Sikander For international quality awards night 2019
2014 The Global Indian New Network (TGINN)