OnePlus 6 has a serious security flaw, and a fix is on the way

OnePlus 6

The OnePlus 6 is a fantastic smartphone, but it also has a pretty serious security flaw, as discovered by an independent security researcher – a flaw that could give tech-savvy hackers unrestricted access to your phone, if they were given physical access to it with a PC nearby.

As reported on XDA Developers, and first noticed by researcher Jason Donenfeld of Edge Security, the bootloader on the OnePlus 6 isn't as locked down as it should be – that's the part of the phone's built-in firmware that stops you replacing the OnePlus OS with whatever else you want to install instead.

It turns out that OnePlus 6 lets you boot any code you like, even when the bootloader is supposedly locked, without having to jump through the usual security hoops first – so a host of malware could be installed and you'd be none the wiser.

Don't panic

To exploit the flaw, someone would need physical access to your phone, a USB cable, and a computer, so this isn't something you're going to get hit by while your OnePlus 6 is in your pocket. Nevertheless, it looks like an oversight from the manufacturer.

The phone maker has confirmed in a statement that a fix for the bug is going to be rolling out shortly, but until then don't let your OnePlus 6 out of your sight. While the chances of someone taking advantage of the exploit are in reality very slim, we're talking about fundamental Android security measures, so it's surprising that OnePlus has missed this.

According to reports, OxygenOS 5.1.6 still includes the hack-friendly bootloader, so a patch might be included in OxygenOS 5.1.7. When we get more information on a software update, we'll let you know.

Via Android Police

David Nield
Freelance Contributor

Dave is a freelance tech journalist who has been writing about gadgets, apps and the web for more than two decades. Based out of Stockport, England, on TechRadar you'll find him covering news, features and reviews, particularly for phones, tablets and wearables. Working to ensure our breaking news coverage is the best in the business over weekends, David also has bylines at Gizmodo, T3, PopSci and a few other places besides, as well as being many years editing the likes of PC Explorer and The Hardware Handbook.