Researchers at SEC Consult discovered more than 20 vulnerabilities in Dormakaba’s Exos central management software and related access hardware that could have allowed attackers to remotely open doors and obtain access PINs. Dormakaba has issued patches and hardening guidance while working with affected customers, though SEC Consult found a few dozen internet-exposed systems that remained reachable. #Dormakaba #Exos
Keypoints
- SEC Consult found over 20 security flaws in Dormakaba’s Exos management software and associated devices.
- Vulnerabilities include hardcoded credentials, weak encryption keys and passwords, lack of authentication, path traversal, command injection, and local privilege escalation.
- The product is used by large European enterprises such as industrial companies, energy providers, logistics firms, and airports.
- Exploitation could let attackers unlock doors, retrieve PINs, and perform further attacks, though vendor says exploitation typically requires prior access to the customer network.
- Dormakaba has released patches and hardening guidance and is working with major customers, while SEC Consult identified some internet-exposed systems that were still vulnerable.