Lucene search
K

80 matches found

RedhatCVE
RedhatCVE
added 2026/01/27 3:23 p.m.4 views

CVE-2025-59109

The dormakaba registration units 9002 PIN Pad Units have an exposed UART header on the backside. The PIN pad is sending every button press to the UART interface. An attacker can use the interface to exfiltrate PINs. As the devices are explicitly built as Plug-and-Play to be easily replaced, an...

5.1CVSS5.9AI score0.00456EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/27 3:23 p.m.5 views

CVE-2025-59107

Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers via the network. The firmware in some instances is provided in an encrypted ZIP file. Within this tool, the password used to decrypt the ZIP and extract the firmware is set statically and can be...

8.5CVSS5.9AI score0.00167EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.7 views

PT-2026-5019

Name of the Vulnerable Software and Affected Versions Taiga versions prior to 6.10.2 Description Missing authorization allows unauthenticated remote attackers to create default due-date records in any project. This is achieved by exploiting unprotected POST endpoints on the user-story, task, and...

6.9CVSS6.2AI score0.00344EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.20 views

PT-2026-5020

What's new in 7.21.5 2026-Jul-03 13:23: ! ppp - fixed CVE-2026-59108; bfd - fixed delay on session print; bgp - fixed advertisement print handling by "dst" when destination is in VRF; bgp - fixed IPv6 End-of-Route processing; bgp - improved stability on MP multiprotocol parsing; bridge - fixed...

6AI score
Exploits0References3
NVD
NVD
added 2026/01/26 10:16 a.m.14 views

CVE-2025-59107

Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers via the network. The firmware in some instances is provided in an encrypted ZIP file. Within this tool, the password used to decrypt the ZIP and extract the firmware is set statically and can be...

8.5CVSS0.00167EPSS
Exploits0References3
NVD
NVD
added 2026/01/26 10:16 a.m.6 views

CVE-2025-59109

The dormakaba registration units 9002 PIN Pad Units have an exposed UART header on the backside. The PIN pad is sending every button press to the UART interface. An attacker can use the interface to exfiltrate PINs. As the devices are explicitly built as Plug-and-Play to be easily replaced, an...

5.1CVSS0.00456EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/26 10:6 a.m.3 views

CVE-2025-59109 UART Leaking Sensitive Data in dormakaba registration unit 9002

The dormakaba registration units 9002 PIN Pad Units have an exposed UART header on the backside. The PIN pad is sending every button press to the UART interface. An attacker can use the interface to exfiltrate PINs. As the devices are explicitly built as Plug-and-Play to be easily replaced, an...

5.1CVSS6AI score0.00456EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/26 10:6 a.m.2 views

CVE-2025-59109

The dormakaba registration units 9002 PIN Pad Units have an exposed UART header on the backside. The PIN pad is sending every button press to the UART interface. An attacker can use the interface to exfiltrate PINs. As the devices are explicitly built as Plug-and-Play to be easily replaced, an...

5.1CVSS5.9AI score0.00456EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/26 10:6 a.m.5 views

EUVD-2025-206377

The dormakaba registration units 9002 PIN Pad Units have an exposed UART header on the backside. The PIN pad is sending every button press to the UART interface. An attacker can use the interface to exfiltrate PINs. As the devices are explicitly built as Plug-and-Play to be easily replaced, an...

5.1CVSS5.9AI score0.00456EPSS
Exploits0References3
CVE
CVE
added 2026/01/26 10:6 a.m.11 views

CVE-2025-59109

The CVE-2025-59109 entry describes the dormakaba reg-istration units 9002 PIN Pad Units with an exposed UART header. The PIN pad reportedly transmits every button press over UART, enabling an attacker with physical access to read PIN data; due to Plug‑and‑Play design, an attacker could remove a d...

5.1CVSS5.9AI score0.00456EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/26 10:6 a.m.32 views

CVE-2025-59109 UART Leaking Sensitive Data in dormakaba registration unit 9002

The dormakaba registration units 9002 PIN Pad Units have an exposed UART header on the backside. The PIN pad is sending every button press to the UART interface. An attacker can use the interface to exfiltrate PINs. As the devices are explicitly built as Plug-and-Play to be easily replaced, an...

5.1CVSS0.00456EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/26 10:6 a.m.6 views

CVE-2025-59108 Weak Default Passwords in dormakaba access manager

By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested version changing the password was not enforced...

9.2CVSS5.9AI score0.00422EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 10:6 a.m.32 views

CVE-2025-59108 Weak Default Passwords in dormakaba access manager

By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested version changing the password was not enforced...

9.2CVSS0.00422EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/26 10:6 a.m.5 views

CVE-2025-59107

Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers via the network. The firmware in some instances is provided in an encrypted ZIP file. Within this tool, the password used to decrypt the ZIP and extract the firmware is set statically and can be...

8.5CVSS5.9AI score0.00167EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/26 10:6 a.m.8 views

EUVD-2025-206367

Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers via the network. The firmware in some instances is provided in an encrypted ZIP file. Within this tool, the password used to decrypt the ZIP and extract the firmware is set statically and can be...

8.5CVSS5.9AI score0.00167EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/26 10:6 a.m.4 views

CVE-2025-59107 Static Firmware Encryption Password in dormakaba access manager

Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers via the network. The firmware in some instances is provided in an encrypted ZIP file. Within this tool, the password used to decrypt the ZIP and extract the firmware is set statically and can be...

8.5CVSS5.9AI score0.00167EPSS
Exploits0References3
CVE
CVE
added 2026/01/26 10:6 a.m.12 views

CVE-2025-59107

Dormakaba’s FWServiceTool uses an encrypted ZIP to deliver firmware for Access Managers. A static password is embedded to decrypt and extract the firmware, and this password has been valid across multiple firmware versions. This enables local access to firmware content, affecting confidentiality ...

8.5CVSS5.9AI score0.00167EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 10:6 a.m.38 views

CVE-2025-59107 Static Firmware Encryption Password in dormakaba access manager

Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers via the network. The firmware in some instances is provided in an encrypted ZIP file. Within this tool, the password used to decrypt the ZIP and extract the firmware is set statically and can be...

8.5CVSS0.00167EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/26 10:6 a.m.2 views

CVE-2025-59106 Web Server Running with Root Privileges in dormakaba access manager

The binary serving the web server and executing basically all actions launched from the Web UI is running with root privileges. This is against the least privilege principle. If an attacker is able to execute code on the system via other vulnerabilities it is possible to directly execute commands...

6AI score0.00684EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 10:6 a.m.33 views

CVE-2025-59106 Web Server Running with Root Privileges in dormakaba access manager

The binary serving the web server and executing basically all actions launched from the Web UI is running with root privileges. This is against the least privilege principle. If an attacker is able to execute code on the system via other vulnerabilities it is possible to directly execute commands...

0.00684EPSS
Exploits0References3
Rows per page
Query Builder