Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2025/12/12 7:57 p.m.4 views

CVE-2024-58311 Dormakaba Saflok System 6000 Key Generation Cryptographic Weakness

Dormakaba Saflok System 6000 contains a predictable key generation algorithm that allows attackers to derive card access keys from a 32-bit unique identifier. Attackers can exploit the deterministic key generation process by calculating valid access keys using a simple mathematical transformation...

9.8CVSS6.5AI score0.00374EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/12 12:0 a.m.6 views

Dormakaba Saflok System 安全漏洞

Dormakaba Saflok System is a hotel access control and security management system from Dormakaba USA. A security vulnerability exists in Dormakaba Saflok System 6000 that stems from a predictable key generation algorithm that could lead to the derivation of card access keys...

9.8CVSS6.6AI score0.00374EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/21 12:0 a.m.6 views

PT-2024-23138 · Dormakaba · Dormakaba Saflok System +5

Name of the Vulnerable Software and Affected Versions: dormakaba Saflok system versions prior to November 2023 software update Saflok MT versions prior to November 2023 software update Confidant series versions prior to November 2023 software update Quantum series versions prior to November 2023...

5.6CVSS7.3AI score0.00315EPSS
Exploits0References10
CVE
CVE
added 2024/03/21 12:0 a.m.62 views

CVE-2024-29916

The CVE describes a vulnerability in dormakaba Saflok systems (pre‑November‑2023 software update) where an attacker who has a valid active or expired keycard for a property can unlock arbitrary doors via forged keycards. The root cause is a UID‑only based key derivation function, affecting Saflok...

5.6CVSS6.9AI score0.00315EPSS
Exploits0References4
0day.today
0day.today
added 2024/03/05 12:0 a.m.313 views

Saflok System 6000 Key Derivation Exploit

// Exploit Title: Saflok KDF // Vendor Homepage: https://www.dormakaba.com/ // Version: System 6000 // Tested on: Dormakaba Saflok cards // CVE: N/A include include define MAGICTABLESIZE 192 define KEYLENGTH 6 define UIDLENGTH 4 int mainint argc, char argv if argc != 2 printf"Usage: %s \n", argv0...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/02/28 12:0 a.m.318 views

Saflok System 6000 Key Derivation

// Exploit Title: Saflok KDF // Date: 2023-10-29 // Exploit Author: a51199deefa2c2520cea24f746d899ce // Vendor Homepage: https://www.dormakaba.com/ // Version: System 6000 // Tested on: Dormakaba Saflok cards // CVE: N/A include include define MAGICTABLESIZE 192 define KEYLENGTH 6 define UIDLENGT...

7.4AI score
Exploits0
Rows per page
Query Builder