CVE-2025-59106 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The binary serving the web server and executing basically all actions launched from the Web UI is running with root privileges. This is against the least privil…
High CVSS: 8.8

CVE-2025-59106

The binary serving the web server and executing basically all actions launched from the Web UI is running with root privileges. This is against the least privilege principle. If an attacker is able to execute code on the system via other vulnerabilities it is possible to directly execute commands with highest privileges.
Vendor
Dormakabagroup
Product
Dormakaba Access Manager 9200-k7 Firmware
CWE
CWE-272
Yayın Tarihi
2026-01-26 10:16:08
Güncelleme
2026-02-12 15:54:17
Source Identifier
551230f0-3615-47bd-b7cc-93e92e730bbf
KEV Date Added
-

Kategoriler

CWE-272 Dormakaba Access Manager 9200-k7 Firmware HIGH Dormakabagroup 2026

Referanslar

https://r.sec-consult.com/dkaccess https://r.sec-consult.com/dormakaba https://www.dormakabagroup.com/en/security-advisories