All 7 CVE vulnerabilities found in Kaba exos 9300, with AI-generated Chinese analysis, references, and POCs.
Vendor: dormakaba
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-59096 | Weak Default Password in dormakaba Kaba exos 9300 CWE-798 | 8.4AI | HighAI | 2026-01-26 |
| CVE-2025-59095 | Hard-coded Key for PIN Encryption in dormakaba Kaba exos 9300 CWE-798 | 8.4AI | HighAI | 2026-01-26 |
| CVE-2025-59094 | Local Privilege Escalation in dormakaba Kaba exos 9300 System management CWE-269 | 7.8AI | HighAI | 2026-01-26 |
| CVE-2025-59093 | Insecure Password Derivation Function for Database Administrator in dormakaba Kaba exos 9300 CWE-656 | 8.8AI | HighAI | 2026-01-26 |
| CVE-2025-59092 | Unauthenticated RPC Service in dormakaba Kaba exos 9300 CWE-798 | 4.0AI | MediumAI | 2026-01-26 |
| CVE-2025-59091 | Hardcoded Legacy Accounts Allowing Control Over Access Managers in dormakaba Kaba exos 9300 CWE-798 | 8.8AI | HighAI | 2026-01-26 |
| CVE-2025-59090 | Unauthenticated SOAP API in dormakaba Kaba exos 9300 CWE-306 | 8.2AI | HighAI | 2026-01-26 |
All 7 known CVE vulnerabilities affecting Kaba exos 9300 with full Chinese analysis, references, and POCs where available.