CVE-2017-11105

The OnePlus 2 Primary Bootloader (PBL) does not validate the SBL1 partition before executing it, although it contains a certificate. This allows attackers with write access to that partition to disable signature validation.
References
Link Resource
https://alephsecurity.com/vulns/aleph-2017026 Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:oneplus:primary_bootloader:-:*:*:*:*:*:*:*
cpe:2.3:h:oneplus:oneplus_2:-:*:*:*:*:*:*:*

Information

Published : 2017-08-03 01:29

Updated : 2019-10-02 17:03


NVD link : CVE-2017-11105

Mitre link : CVE-2017-11105


JSON object : View

Advertisement

dedicated server usa

Products Affected

oneplus

  • oneplus_2
  • primary_bootloader