Medium severity6.5NVD Advisory· Published Aug 7, 2019· Updated Jun 17, 2026
CVE-2018-20958
CVE-2018-20958
Description
The Bluetooth Low Energy (BLE) subsystem on Tapplock devices before 2018-06-12 relies on Key1 and SerialNo for unlock operations; however, these are derived from the MAC address, which is broadcasted by the device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Tapplock/Tapplock devicesdescription
Patches
Vulnerability mechanics
References
2- tapplock.com/notice/20180612/nvdVendor Advisory
- www.pentestpartners.com/security-blog/totally-pwning-the-tapplock-smart-lock/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.