CVE-2025-59094

High CVSS: 8.4

A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System management application (d9sysdef.exe). Within this application it is possible to specify an arbitrary executable as well as the weekday and start time, when the specified executable should be run with SYSTEM privileges.

Vendor

Product

CWE

CWE-269

Yayın Tarihi

2026-01-26 10:16:06

Güncelleme

2026-01-26 15:03:33

Source Identifier

551230f0-3615-47bd-b7cc-93e92e730bbf

KEV Date Added

Kategoriler

CWE-269 HIGH 2026

Referanslar

https://r.sec-consult.com/dkexos https://r.sec-consult.com/dormakaba https://www.dormakabagroup.com/en/security-advisories