CVE-2016-10370

Published: May 11, 2017Modified: May 13, 2026

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

An issue was discovered on OnePlus devices such as the 3T. The OnePlus OTA Updater pushes the signed-OTA image over HTTP without TLS. While it does not allow for installation of arbitrary OTAs (due to the digital signature), it unnecessarily increases the attack surface, and allows for remote exploitation of other vulnerabilities such as CVE-2017-5948, CVE-2017-8850, and CVE-2017-8851.

Affected (1)

Products: Oneplus: Oxygenos

1 product

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Oneplus Oxygenos	All versions

Running on/with	Platform Versions
Oneplus Oneplus 3t	All versions

Related CWEs

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (6)

http://www.securityfocus.com/bid/98495

Source: cve@mitre.org

https://alephsecurity.com/vulns/aleph-2017022

Source: cve@mitre.org

ExploitTechnical DescriptionThird Party Advisory

https://forums.oneplus.net/threads/ota-and-imei-over-http.453992/

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/98495

Source: af854a3a-2127-422b-91ae-364da2661108

https://alephsecurity.com/vulns/aleph-2017022

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitTechnical DescriptionThird Party Advisory

https://forums.oneplus.net/threads/ota-and-imei-over-http.453992/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.