Share
## https://sploitus.com/exploit?id=B75029BF-5D3A-5BD1-85BE-AFCF6CE06A11
# Mi 8e5 Unlock Toolkit

Automated bootloader unlock assistant for Mi 8e5 series devices, implementing CVE-2026-43499.

**Author:** @Kernix  
**Github:** https://github.com/Linuxoid-cn  
**Contact:** jehsianbenites@gmail.com  
**Telegram:** @C_Valmont

---

## Overview

Integrates ADB, Fastboot, unlock components, data cleanup images, and automation scripts to streamline authorized bootloader unlocking. Supports both Windows and macOS.

## Supported Devices

| # | Device | Codename |
|---|--------|----------|
| 1 | Xiaomi 17 | pudding |
| 2 | Xiaomi 17 Pro | pandora |
| 3 | Xiaomi 17 Ultra | nezha |
| 4 | Xiaomi 17 Pro Max | popsicle |
| 5 | Redmi K90 Pro Max | myron |

## Requirements

- USB debugging enabled on device (Settings > Developer Options)
- OEM unlock enabled on device (Settings > Developer Options)
- USB cable connected to PC/Mac

Platform-specific tools (adb, fastboot) are included in `platform-tools/`.

## Usage

### macOS
```bash
chmod +x 8e5-unlock.sh
./8e5-unlock.sh
```

### Windows
Double-click `8e5-unlock.bat` or run from Command Prompt.

## What It Does

1. Pushes exploit payload to device via ADB
2. Gains temporary root via CVE-2026-43499 (LD_PRELOAD injection)
3. Backs up original ABL (bootloader) partitions to `unlockFolder/backupABL/`
4. Flashes patched ABL to bypass bootloader lock
5. Reboots to Fastboot, confirms unlock, erases FRP
6. Restores original ABL and triggers factory reset

## Folder Structure

```
8e5-unlock.sh              macOS script
8e5-unlock.bat             Windows script
platform-tools/
  adb                      macOS ADB binary
  fastboot                 macOS Fastboot binary
  adb.exe                  Windows ADB binary
  fastboot.exe             Windows Fastboot binary
preload-8e5-Ennea.so       CVE exploit payload
linuxloader_unlock.efi     EFI unlock component
misc_wipedata_mi.img       Factory reset trigger image
unlockFolder/
  factoryABL/              Patched ABL files per device
  backupABL/               Your original ABL backup (created at runtime)
```

## Warnings

- **All data on the device will be wiped.** Back up everything first.
- Not guaranteed compatible with all firmware versions.
- Do not remove any files from the folder โ€” the script will fail.
- For personal devices, authorized testing, and security research only.

## Applicable Uses

- Personal device bootloader unlocking
- Firmware research and verification
- Android security research / CVE verification

**Not for:** unauthorized devices, commercial use, or privacy data extraction.

## Disclaimer

This project is for learning, research, and authorized testing only. Users assume all responsibility for data loss, device damage, or warranty changes.