oBike Electronic Lock suffers from an access control bypass vulnerability via a replay attack on a predictable nonce.