MT6789 boot rom #932
Comments
|
Wow. we still can hope for MT6789 . Thanks #758 |
|
I managed to get a bootrom backup. but it is not like the previous bootroms. This is an exploit from bootrom, only @bkerler can fix it |
|
from which device you extracted it? |
Xiaomi Poco M5 (rock) |
Good work! I am researching brom_v6 on RMX3630 now. Can you send how to get brom dump on V6 devices? Probably, there are |
|
MT6789 is affected by these recent ones CVE-2024-20005 ( EoP da ) this is not exhaustive list but I think these are more relevant |
|
da related but mt6789 may not be affected by all |
|
None of these affects the bootrom nor da1. Da2 is useless without da1 signed loaders which aren't available. |
|
@bkerler any luck with mt6789 brom dump? this tool might be helpful in detection of CWE-787 etc |
i have same device but it's not possible to extract bootrom from it as it has SLA DAA SBC etc all enabled I want to understand the process you followed to extract it !!! |
|
@bkerler bro atleast please can you share Brom dump if you have extracted it from your GIGASET GX4 |
We almost succeeded to made an engineering rom for our device Poco M5 & Redmi 11 Prime 4G (Rock). Now we can unbrick our device without mi auth. But, we have to flash patched preloader.bin ‘including some other images/files’ before brick our device. (We made a script for it). It's still in experimental conditions, not public yet. #757 |
|
CVE-2024-20056 ( EoP preloader ) affects Mt6789 @bkerler can it be helpful in dumping brom check here for more https://github.com/advisories?query=preloader+mediatek |
brom_v6_1208.zip
The text was updated successfully, but these errors were encountered: