VYPR

Primary Bootloader

by Oneplus

CVEs (1)

  • CVE-2017-11105CriAug 3, 2017
    risk 0.64cvss 9.8epss 0.02

    The OnePlus 2 Primary Bootloader (PBL) does not validate the SBL1 partition before executing it, although it contains a certificate. This allows attackers with write access to that partition to disable signature validation.