Google's automated over-the-air (OTA) update system has plugged a "high-risk" vulnerability that affected the Android bootloader on Nexus smartphones.

Smartphone bootloader firmware should be secure even if the operating system is compromised. But researchers have found five flaws in major chipset vendors' code that leave the process vulnerable.

That is usually a requirement when it comes to messing around with your smartphone. Android Police verified the vulnerability and was able to boot TWRP on its bootloader-locked OnePlus 6.