CNNVD-202601-4395 Information
CNNVD ID
CNNVD-202601-4395
Related CVE
- CNNVD Published: 2026-01-26
Description (Chinese)
Dormakaba Access Manager是美国Dormakaba公司的一个智能硬件控制器。 Dormakaba Access Manager存在安全漏洞,该漏洞源于跟踪功能无需身份验证或加密,且传输数据包含敏感信息,可能导致检索在注册单元上输入的所有PIN。
Description (English)
Dormakaba Access Manager is a smart hardware controller for Dormakaba in the United States. There is a security loophole in Dormakaba Access Manager, which stems from the fact that the tracking function does not require authentication or encryption and that the transmission data contains sensitive information that may lead to the retrieval of all PIN entered on the registration unit.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Dormakaba
Published
2026-01-26
Last Modified
2026-02-24
References
https://r.sec-consult.com/dormakaba https://r.sec-consult.com/dkaccess https://www.dormakabagroup.com/en/security-advisories https://access.redhat.com/security/cve/cve-2025-59098
Patch
https://www.dormakabagroup.com/en/security-advisories
Share on: