Finding your serial number
The first thing to do is determine if your Switch is vulnerable to fusee-gelee, the exploit we will be using to launch CFW.
This vulnerability was independently discovered by several different Switch hacking teams, and multiple variants of it were released to the public in April 2018 after a 90-day disclosure period ended. Nintendo and NVIDIA were made aware of the issue before the public release as a result, and Switch systems that are not vulnerable to the exploit started being spotted in the wild in July 2018. NVIDIA publicly acknowledged the flaw in April as well. In July 2019, Nintendo announced updated consoles, a handheld variant of the Switch called the Switch Lite (HDH-001), and a new model of original Switch (HAC-001-01) with better battery life. Both of these new models use a new processor called the T210b01 (also known as T214 and Mariko) with a new bootROM, and are not hackable at the current time.
Patched and Mariko units can be identified by their serial number. This number can be found on the bottom of your Switch adjacent to the USB-C port, or in the Settings applet at System -> Serial Information.
Determining if your Switch is vulnerable
The homebrew community has crowdsourced a list of known serial numbers which are vulnerable to fusee-gelee.
- If your serial number is on this list as "potentially patched", follow the guide and see if your system works.
- If your serial number is listed as "patched", there is nothing you can do at this time.
- If your system is patched, it is highly advised to keep it on 7.0.1 or lower, if possible, as there may be a vulnerability for these versions in the far future. DO NOT update patched consoles past 7.0.1 if you want to ever have a chance of running homebrew and/or CFW on them.
If you are unsure if your serial is patched, you can test your console yourself following the instructions here.
The following information is based on this GBATemp thread.
|Serial Numbers||Unpatched||Potentially patched||Patched|
|XAW1||XAW10000000000 to XAW10074000000||XAW10074000000 to XAW10120000000||XAW10120000000 and up|
|XAW4||XAW40000000000 to XAW40011000000||XAW40011000000 to XAW40012000000||XAW40012000000 and up|
|XAW7||XAW70000000000 to XAW70017800000||XAW70017800000 to XAW70030000000||XAW70030000000 and up|
|XAJ1||XAJ10000000000 to XAJ10020000000||XAJ10020000000 to XAJ10030000000||XAJ10030000000 and up|
|XAJ4||XAJ40000000000 to XAJ40046000000||XAJ40046000000 to XAJ40060000000||XAJ40060000000 and up|
|XAJ7||XAJ70000000000 to XAJ70040000000||XAJ70040000000 to XAJ70050000000||XAJ70050000000 and up|
|XAK1||N/A||XAK10000000000 and up||N/A|
If your serial number is not listed above, your device is not vulnerable.
Before setting up the console for homebrew, it is important to have at least one eShop game (such as Onigiri), application (such as YouTube or Hulu), or a game demo such as 10 Second Run RETURNS. Running homebrew through any game cartridge will also work, but it must be inserted. Running homebrew does not permanently replace or remove the game/application, nor does it become tied to only one game/application (any cartridge you have inserted or any game/application installed can always be used). Once you have any game or application, you are prepared to continue on with the guide.
Nereba and Caffeine how-to guides are currently a Work-In-Progress (WIP)!
While the "New" Switch (HAC-001-01)'s earliest possible firmware is 7.0.1, it is not vulnerable to déjà vu, the exploit used by Nereba and Caffeine, because of hardware differences from the "Old" Switch (HAC-001).
|Firmware Version||Unpatched Switches (HAC-001)||Patched Switches (HAC-001)||"New" Switch (HAC-001-01)||Switch Lite (HDH-001)|
|1.0.0||Nereba or RCM||N/A||N/A||N/A|
|2.0.0 - 3.0.2||Caffeine or RCM||N/A||N/A||N/A|
|4.0.0 - 4.1.0||Caffeine or RCM||Caffeine||N/A||N/A|
|5.0.0 - 7.0.0||RCM||Wait for CFW||N/A||N/A|
|7.0.1||RCM||Wait for CFW||Cart update to 8.0.1||N/A|
|8.0.1||RCM||Wait for homebrew||Wait for homebrew||Wait for homebrew|
|8.1.0 - 14.1.2||RCM||Unhackable (currently)||Unhackable (currently)||Unhackable (currently)|
OLED Switches (HEG-001) are currently unhackable via software.