Hangzhou Luoping · Hangzhou Luoping Smart Locker · CVE-2018-16242
**Name of the Vulnerable Software and Affected Versions**
Hangzhou Luoping Smart Locker (affected versions not specified)
**Description**
The issue concerns a predictable nonce used in the locking protocol of Hangzhou Luoping Smart Locker, which is utilized by oBike to lock bicycles. This predictability allows attackers to bypass the locking mechanism by using Bluetooth Low Energy (BLE) to replay ciphertext.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.