Today, within the security of Android, it is common to find ourselves with a locked bootloader to prevent our phone from ending up executing different arbitrary code. However, the OnePlus 6 allows you to boot the device with any modified or arbitrary image, even with this mentioned bootloader. This vulnerability in OnePlus 6 has been discovered by security researcher Jason Donenfeld and, as you can imagine, it simply allows anyone with physical access to the device and certain knowledge, to start an arbitrary image in the terminal to gain full access to it. The problem with arbitrary images is that they can be modified to include code that gives us access to root, causing us to lose total control of our device if it is stolen. In this way, if we lose our OnePlus 6, an attacker with the necessary knowledge could get easy access to all the data even if it was blocked. In general, a locked bootloader prevents this kind of thing from happening, but in particular, this new device has this important security flaw. From the own OnePlus, they are aware of this failure, and they assure that they are in contact with the security researcher and soon they will launch a software update. So, what do you think about this? Simply share all your views and thoughts in the comment section below.
Δ