CVE-2017-5554

Опубликовано: 23 янв. 2017

Источник: nvd

CVSS3: 8.1

CVSS2: 9.3

EPSS Низкий

Описание

An issue was discovered in ABOOT in OnePlus 3 and 3T OxygenOS before 4.0.2. The attacker can reboot the device into the fastboot mode, which could be done without any authentication. A physical attacker can press the "Volume Up" button during device boot, where an attacker with ADB access can issue the adb reboot bootloader command. Then, the attacker can put the platform's SELinux in permissive mode, which severely weakens it, by issuing: fastboot oem selinux permissive.

Ссылки

http://www.securityfocus.com/bid/95706
Third Party Advisory
VDB Entry
https://securityresear.ch/2017/01/11/fastboot-oem-selinux-permissive/
Third Party Advisory
https://www.xda-developers.com/oneplus-33t-bootloader-vulnerability-allows-changing-of-selinux-to-permissive-mode-in-fastboot/
Third Party Advisory
http://www.securityfocus.com/bid/95706
Third Party Advisory
VDB Entry
https://securityresear.ch/2017/01/11/fastboot-oem-selinux-permissive/
Third Party Advisory
https://www.xda-developers.com/oneplus-33t-bootloader-vulnerability-allows-changing-of-selinux-to-permissive-mode-in-fastboot/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:oneplus:oxygenos:*:*:*:*:*:*:*:*

Версия до 3.2.8 (включая)

cpe:2.3:h:oneplus:oneplus_3:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:oneplus:oxygenos:*:*:*:*:*:*:*:*

Версия до 3.5.4 (включая)

cpe:2.3:h:oneplus:oneplus_3t:-:*:*:*:*:*:*:*

EPSS

Процентиль: 84%

0.02132

Низкий

8.1 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-qgrw-j67r-q423