OnePlus 3 and 3T bootloader vulnerabilities discovered, fixed in the latest release

OnePlus 3

A series of vulnerabilities has been found in OnePlus 3 and OnePlus 3T bootloader. A security researcher has discovered that OxygenOS 3.2 through 4.0.1 has a critical vulnerability. However, the company has fixed the vulnerability in OxygenOS 4.0.2 and OxygenOS 4.0.3, which was rolled out to OnePlus 3T.

The main role of the security loophole is that it enable anyone with two native fastboot commands to disable the verified boot feature. It can be performed without actually unlocking the bootloader with the user-accessible command. According to researchers, malicious code can be easily triggered without resetting the use data.

In a statement released to the press, OnePlus has clarified that the vulnerability has been patched in OxygenOS 4.0.2 for OnePlus 3. Moreover, the company has already started to push 4.0.3 to OnePlus 3T owners, which provides enhanced and optimized exposure while capturing night time images. Moreover, the update also comes with Amazon Prime app for India-based users in addition to bug fixes related to Wi-Fi.

On the specifications front, the OnePlus 3 features a 5.5-inch FHD Optic AMOLED display, Snapdragon 820 processor, Adreno 530 graphics, 6GB RAM, 64GB storage, 16MP rear camera, 8MP front-facing snapper powered by a 3000mAh battery.

Under the hood, the OnePlus 3T is equipped with a 5.5-inch FHD Optic AMOLED display, Snapdragon 821 processor, Adreno 530 graphics, 6GB AM, 64/128GB internal storage, 16MP rear camera, 16MP front-facing snapper powered by a 3400mAh battery.

Like in all the previous updates, it will take few days for the new OxygenOS 4.0.2 or OxygenOS 4.0.3 to hit your devices. Alternatively, you can verify the existence of the update by selecting the Settings menu.

DONT MISS  Lenovo P2 with massive 5100mAh battery to launch in India on January 11

Anand Narayanaswamy is the editor-in-chief of Netans. He was recognized as a Microsoft Most Valuable Professional (MVP) for 9 years (2002 to 2011) and currently part of MVP Reconnect program. He is also part of the prestigious ASPInsider program. Anand has published several articles and reviews related to various software and hardware products for various software and technology related websites. He is also active on social media and also participates as an Influencer for various brands. Anand can be reached at admin@netans.com