Vulnerability in Dormakaba Kaba Exos 9300

CVE-2025-59092

An RPC service, which is part of exos 9300, is reachable on port 4000, run by the process FSMobilePhoneInterface.exe. This service is used for interprocess communication between services and the Kaba exos 9300 GUI, containing status inform…

EPSS: 0.001 (34.1th percentile) — read the EPSS interpretation.

Affected products

Dormakaba Kaba Exos 9300 — versions < 4.4.0

Weakness classification (CWE)

CWE-798 — Use of Hard-coded Credentials

References

r.sec-consult.com/dormakaba (technical-description)
r.sec-consult.com/dkexos (third-party-advisory)
www.dormakabagroup.com/en/security-advisories (vendor-advisory)