OnePlus left a backdoor in its devices capable of root access

James Marshall
November 14, 2017

The application in question is called 'EngineerMode, ' which is meant to be used in factories to confirm that the device is working properly.

You can also check if this application is installed on your OnePlus device or not.

The app can diagnose Global Positioning System, check the root status, perform a series of automated tests, and more. With the help of a few cybersecurity experts, the required password was discovered, making rooting a OnePlus phone as easy as running a few commands. "There's an activity - dubbed 'DiagEnabled" - associated with this app, which if launched with the correct password will give you the root access.

A potentially risky backdoor in multiple OnePlus devices has been just unearthed by a knowing developer, revealing a hidden app that can be potentially used to gain root access and take control over the device.

He further claims that the company has intentionally left the backdoor on their devices.

He plans to release an app for rooting OnePlus devices sometime today, and we'll update the post when it is released.

For its part, OnePlus has confirmed that the company is looking into the claims made by the developer. No, it's not a rehash of last month's data collection scandal. On one hand this is a worrying discovery; on the other, it opens up a way to root OnePlus phones without unlocking the bootloader. The first stream is usage analytics, which we collect in order for us to more precisely fine-tune our software according to user behaviour. "The second stream is device information, which we collect to provide better after-sales support".

Other reports by Click Lancashire

Discuss This Article