## https://sploitus.com/exploit?id=D89C7E5C-58E4-5F70-AD1C-94820BF81141
# CVE-2022-38694
An attacker with physical access to the device can overwrite a function pointer somewhere in the BootROM data section or a return address stored on the stack and execute their own code with BootROM privileges.
For detailed information, read [the article by NCC Group](https://research.nccgroup.com/2022/09/02/theres-another-hole-in-your-soc-unisoc-rom-vulnerabilities/).
## 快速指路:
工具下载:[Releases](https://github.com/TomKing062/CVE-2022-38694_unlock_bootloader/releases)
使用方法:[Wiki](https://github.com/TomKing062/CVE-2022-38694_unlock_bootloader/wiki)
## How to unlock bootloader with CVE-2022-38694
Download: [Releases](https://github.com/TomKing062/CVE-2022-38694_unlock_bootloader/releases)
Usage: [Wiki](https://github.com/TomKing062/CVE-2022-38694_unlock_bootloader/wiki)