Lucene search
K

14 matches found

Cvelist
Cvelist
added 2026/01/26 10:4 a.m.28 views

CVE-2025-59097 Unauthenticated SOAP API in dormakaba access manager

The exos 9300 application can be used to configure Access Managers e.g. 92xx, 9230 and 9290. The configuration is done in a graphical user interface on the dormakaba exos server. As soon as the save button is clicked in exos 9300, the whole configuration is sent to the selected Access Manager via...

9.3CVSS0.00523EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 10:4 a.m.39 views

CVE-2025-59096 Weak Default Password in dormakaba Kaba exos 9300

The default password for the extended admin user mode in the application U9ExosAdmin.exe "Kaba 9300 Administration" is hard-coded in multiple locations as well as documented in the locally stored user documentation...

4.6CVSS0.00155EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/26 10:4 a.m.5 views

CVE-2025-59095 Hard-coded Key for PIN Encryption in dormakaba Kaba exos 9300

The program libraries DLL and binaries used by exos 9300 contain multiple hard-coded secrets. One notable example is the function "EncryptAndDecrypt" in the library Kaba.EXOS.common.dll. This algorithm uses a simple XOR encryption technique combined with a cryptographic key cryptoKey to transform...

6.8CVSS5.9AI score0.00104EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/26 10:4 a.m.2 views

CVE-2025-59094 Local Privilege Escalation in dormakaba Kaba exos 9300 System management

A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System management application d9sysdef.exe. Within this application it is possible to specify an arbitrary executable as well as the weekday and start time, when the specified executable should be run with SYSTEM...

8.4CVSS5.8AI score0.00169EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 10:4 a.m.26 views

CVE-2025-59094 Local Privilege Escalation in dormakaba Kaba exos 9300 System management

A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System management application d9sysdef.exe. Within this application it is possible to specify an arbitrary executable as well as the weekday and start time, when the specified executable should be run with SYSTEM...

8.4CVSS0.00169EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 10:3 a.m.29 views

CVE-2025-59092 Unauthenticated RPC Service in dormakaba Kaba exos 9300

An RPC service, which is part of exos 9300, is reachable on port 4000, run by the process FSMobilePhoneInterface.exe. This service is used for interprocess communication between services and the Kaba exos 9300 GUI, containing status information about the Access Managers. Interacting with the...

8.7CVSS0.00759EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/26 10:3 a.m.4 views

CVE-2025-59091 Hardcoded Legacy Accounts Allowing Control Over Access Managers in dormakaba Kaba exos 9300

Multiple hardcoded credentials have been identified, which are allowed to sign-in to the exos 9300 datapoint server running on port 1004 and 1005. This server is used for relaying status information from and to the Access Managers. This information, among other things, is used to graphically...

9.3CVSS6AI score0.00759EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 10:3 a.m.33 views

CVE-2025-59090 Unauthenticated SOAP API in dormakaba Kaba exos 9300

On the exos 9300 server, a SOAP API is reachable on port 8002. This API does not require any authentication prior to sending requests. Therefore, network access to the exos server allows e.g. the creation of arbitrary access log events as well as querying the 2FA PINs associated with the enrolled...

9.3CVSS0.01039EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/26 12:0 a.m.6 views

Dormakaba Exos 9300 security vulnerabilities

The Dormakaba Exos 9300 is an access control and security management system developed by the American company Dormakaba. The Dormakaba Exos 9300 has a security vulnerability, which stems from the presence of multiple hardcoded credentials. This vulnerability could allow unauthorized access to the...

9.3CVSS5.8AI score0.00759EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/26 12:0 a.m.11 views

Dormakaba Exos 9300 security vulnerabilities

The Dormakaba Exos 9300 is an access control and security management system developed by the American company Dormakaba. The Dormakaba Exos 9300 has a security vulnerability, where the default password for the extended administrator user mode is hardcoded, which may allow unauthorized access...

4.6CVSS5.8AI score0.00155EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/26 12:0 a.m.7 views

Dormakaba Exos 9300 security vulnerabilities

The Dormakaba Exos 9300 is an access control and security management system developed by the American company Dormakaba. The Dormakaba Exos 9300 has a security vulnerability, as the database passwords are derived from static random values. This vulnerability could allow attackers to derive...

8.5CVSS5.8AI score0.00188EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/26 12:0 a.m.6 views

Dormakaba Exos 9300 security vulnerabilities

Dormakaba Exos 9300 is an access control and security management system developed by the American company Dormakaba. Dormakaba Exos 9300 has a security vulnerability that stems from the ability to specify any executable file to run with SYSTEM privileges, which may lead to an increase in local...

8.4CVSS5.8AI score0.00169EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/26 12:0 a.m.6 views

Dormakaba Exos 9300 security vulnerabilities

Dormakaba exos 9300 is an access control and security management system developed by the American company Dormakaba. The Dormakaba exos 9300 has a security vulnerability, which stems from the fact that the RPC service requires no authentication. This vulnerability may allow the transmission of...

8.7CVSS5.9AI score0.00759EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/26 12:0 a.m.9 views

Dormakaba Exos 9300 security vulnerabilities

The Dormakaba Exos 9300 is an access control and security management system developed by the American company Dormakaba. The Dormakaba Exos 9300 has a security vulnerability. This vulnerability stems from the SOAP API, which requires no authentication, potentially allowing the creation of arbitra...

9.3CVSS7.4AI score0.01039EPSS
Exploits0References4
Rows per page
Query Builder