TheFloW discloses simple modification that makes bd-jb exploit compatible with PS5s up to firmware 7.61
It’s alive (again)! Hacker TheFloW has taken to Twitter to announce how a slight modification of his BD-JB exploit allows to run the hack again on PS5 Firmwares up to 7.61 included. The vulnerability involved in this modification has been allegedly patched in Firmware 8.00 by Sony.
BD-JB Exploit running on PS5s up to Firmware 7.61
If you’re the owner of a PS5 with a BluRay disc, on firmware 7.61 and below, you’re probably in luck, as it appears a minor modification of TheFloW’s BD-JB exploit allows the hack to run again, up to Firmware 7.61.
It was initially believed that BD-JB had been patched around PS5 Firmware 5.00, but the hacker had mentioned this “revival” back in September this year so this is not a “surprise” in itself. But today TheFloW has published the details of the modification. This means Native PS5 code execution on Firmware up to 7.61 should now be possible.
However this is not a kernel exploit!
To be crystal clear, we’re talking of usermode execution here, and the PS5 Kernel exploit remains “reserved” to firmware 4.51 and below. Nonetheless, the BD-JB exploit could prove to be resilient, and used again as an entry point for future PS5 Jailbreaks, if a new Kernel exploit is ever disclosed. As a reminder, TheFloW has mentioned he might have something in store for us on that front, but that has yet to be disclosed.
Try the BD-JB Exploit on your PS5 up to Firmware 7.61
You will need a PS5 running on firmware 7.61 or below, and of course as the exploit relies on a series of flaws in the Blu-Ray layer of the console, it needs to be a Disc model (Digital Edition version is out for this one).
Please note that I have personally not tested this yet.
The exploit needs to be burned onto a Blu-Ray disc. You can find Blu Ray burners for reasonably cheap on Amazon and other retailers (make sure they support BD-RE and Dual Layer DL). TheFloW has specified in the past that he used Rewritable Verbatim discs (BD-RE) in his own tests. (affiliate links).
To test the exploit on Firmware 7.61 and below, it appears you have a simple modification to do to the original bd-jb source:
- get the source from https://github.com/TheOfficialFloW/bd-jb
- replace the baseDirectory element in bdjo.xml with:
- make all should generate the files required to burn on the BluRay disc, in the “bdmv” directory.
- Dependencies https://github.com/zathras/java.net
Update, for those having issues, here’s some recommendations from Discord user RibamarSaraiva:
- fix bdjo.xml on theflow0 repository replace theflow0 bd-jb/bdmv/bdjo.xml line 13 for <baseDirectory>file:///app0/cdc/lib/../../../disc/BDMV/JAR/00000.jar</baseDirectory>
- generate another 00000.bdjo on john-tornblom repository
- delete 00000.bdjo from folder bdj-sdk/resources/AVCHD/BDMV/BDJO/ on john-tornblom repository
- generate a new 00000.bdjo using theflow0 repository java -jar $(TOOLS)/bdjo.jar $(BDMV)/bdjo.xml $(DISC)/BDMV/BDJO/00000.bdjo and copy result file 00000.bdjo from theflow0 folder $(DISC)/BDMV/BDJO/ to john-tornblom repository folder bdj-sdk/resources/AVCHD/BDMV/BDJO/
- john-tornblom userland works again.