Prior to version 1.26.0, the Chirp mobile app hardcoded BEACON_PASSWORD. This credential could be used to modify the distance over which Bluetooth beacons broadcast. This feature impacts common area entryways and is unrelated to a completely separate unlocking mechanism. Upgrade to version 1.26.0 or later to resolve CVE-2024-2197. For more information, see https://statement.chirpsystems.com/chirp-systems-icsa-24-067-01-response.html