this is notable: Accidental $70k Google Pixel Lock Screen Bypass - bugs.xdavidhu.me
Precondition is - the initial decryption was already done at some time earlier before the screen locked again. This can’t be used on cold-booting devices !
A vulnerability that got fixed with the 5th nov patchlevel on Pixel phones. If the SIM card slot is easily accessible while the battery can stay put, there is a way to at least on Pixels circumvent the PIN entry to access the phone.
A reddit thread contains some examples of devices affected - fignompe comments on Accidental $70k Google Pixel Lock Screen Bypass
I tried to reproduce on a Moto 5Gs R (L18.1), but couldn’t. The FP3 has the card slots blocked by the battery (talk physical security) to test on A13.
- Video demo: Pixel 6 Full Lockscreen Bypass POC - YouTube
- Fixing commit - Do not dismiss keyguard after SIM PUK unlock · aosp-mirror/platform_frameworks_base@ecbed81 · GitHub … the blogpost by the reporter gives an explanation in the later paragraphs