Vulnerabilities > Tapplock

DATE CVE VULNERABILITY TITLE RISK
2019-08-08 CVE-2018-20957 Improper Access Control vulnerability in Tapplock One+ Firmware
The Bluetooth Low Energy (BLE) subsystem on Tapplock devices before 2018-06-12 allows replay attacks.
low complexity
tapplock CWE-284
5.8
2019-08-07 CVE-2018-20958 Information Exposure vulnerability in Tapplock Firmware
The Bluetooth Low Energy (BLE) subsystem on Tapplock devices before 2018-06-12 relies on Key1 and SerialNo for unlock operations; however, these are derived from the MAC address, which is broadcasted by the device.
low complexity
tapplock CWE-200
3.3