VYPR
High severity8.1NVD Advisory· Published Jan 23, 2017· Updated Jun 17, 2026

CVE-2017-5554

CVE-2017-5554

Description

An issue was discovered in ABOOT in OnePlus 3 and 3T OxygenOS before 4.0.2. The attacker can reboot the device into the fastboot mode, which could be done without any authentication. A physical attacker can press the "Volume Up" button during device boot, where an attacker with ADB access can issue the adb reboot bootloader command. Then, the attacker can put the platform's SELinux in permissive mode, which severely weakens it, by issuing: fastboot oem selinux permissive.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Oneplus/Oxygenos2 versions
    cpe:2.3:o:oneplus:oxygenos:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:oneplus:oxygenos:*:*:*:*:*:*:*:*range: <=3.2.8
    • (no CPE)range: <4.0.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.