SecuriTricks - CVE-2025-59109

Description

The dormakaba registration units 9002 (PIN Pad Units) have an exposed UART header on the backside. The PIN pad is sending every button press to the UART interface. An attacker can use the interface to exfiltrate PINs. As the devices are explicitly built as Plug-and-Play to be easily replaced, an attacker is easily able to remove the device, install a hardware implant which connects to the UART and exfiltrates the data exposed via UART to another system (e.g. via WiFi).

Product(s) Impacted

Vendor	Product	Versions
Dormakaba	Registration Units 9002	*

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-1295

Debug Messages Revealing Unnecessary Information

The product fails to adequately prevent the revealing of unnecessary and potentially sensitive system information within debugging messages.

*CPE(s)

Affected systems and software identified for this CVE.

Type	Vendor	Product	Version	Update	Edition	Language	Software Edition	Target Software	Target Hardware	Other Information
a	dormakaba	registration_units_9002	/	/	/	/	/	/	/	/

References

https://r.sec-consult.com/dkaccess

https://r.sec-consult.com/dormakaba

https://www.dormakabagroup.com/en/security-advisories

http://seclists.org/fulldisclosure/2026/Jan/24

CVSS Score

5.1 / 10

CVSS Data - 4.0

Attack Vector: PHYSICAL
Attack Complexity: LOW
Attack Requirements: NONE
Privileges Required: NONE
User Interaction: ACTIVE
Scope:
Confidentiality Impact: HIGH
Integrity Impact: NONE
Availability Impact: NONE
Exploit Maturity: NOT_DEFINED

CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

View Vector String

Timeline

Published: Jan. 26, 2026, 10:16 a.m.
Last Modified: Jan. 27, 2026, 7:16 a.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

551230f0-3615-47bd-b7cc-93e92e730bbf

CVE-2025-59109