Share
## https://sploitus.com/exploit?id=D89C7E5C-58E4-5F70-AD1C-94820BF81141
# CVE-2022-38694

An attacker with physical access to the device can overwrite a function pointer somewhere in the BootROM data section or a return address stored on the stack and execute their own code with BootROM privileges.

For detailed information, read [the article by NCC Group](https://research.nccgroup.com/2022/09/02/theres-another-hole-in-your-soc-unisoc-rom-vulnerabilities/).

## 快速指路:

工具下载:[Releases](https://github.com/TomKing062/CVE-2022-38694_unlock_bootloader/releases)

使用方法:[Wiki](https://github.com/TomKing062/CVE-2022-38694_unlock_bootloader/wiki)

## How to unlock bootloader with CVE-2022-38694

Download: [Releases](https://github.com/TomKing062/CVE-2022-38694_unlock_bootloader/releases)

Usage: [Wiki](https://github.com/TomKing062/CVE-2022-38694_unlock_bootloader/wiki)