VYPR

VT20i

by Vaultek

CVEs (2)

  • CVE-2017-17436HigDec 7, 2017
    risk 0.57cvss 8.8epss 0.00

    An issue was discovered in the software on Vaultek Gun Safe VT20i products. There is no encryption of the session between the Android application and the safe. The website and marketing materials advertise that this communication channel is encrypted with "Highest Level…

  • CVE-2017-17435HigDec 7, 2017
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in the software on Vaultek Gun Safe VT20i products, aka BlueSteal. An attacker can remotely unlock any safe in this product line without a valid PIN code. Even though the phone application requires it and there is a field to supply the PIN code in an…