Headline
CVE-2022-36228: CVE-2022-36228
Nokelock Smart padlock O1 Version 5.3.0 is vulnerable to Insecure Permissions. By sending a request, you can add any device and set the device password in the Nokelock app.
[CVE ID]
CVE-2022-36228
[PRODUCT]
Smart padlock O1 - Version 5.3.0
[VERSION]
Smart padlock O1 - Version 5.3.0
[PROBLEM TYPE]
Insecure Permissions
[DESCRIPTION]
You can unconditionally add the right to use all nokelock products through the MAC address.After adding a lock, you can modify the password of the smart lock in security verification.