Vulnerability in Dormakaba Access Manager 92xx-k5

CVE-2025-59101

Instead of typical session tokens or cookies, it is verified on a per-request basis if the originating IP address has once successfully logged in. As soon as an authentication request from a certain source IP is successful, the IP address…

EPSS: 0.000 (11.6th percentile) — read the EPSS interpretation.

Affected products

Dormakaba Access Manager 92xx-k5 — versions 92xx-K5: <XAMB 04.06.212
Dormakaba Access Manager 92xx-k7 — versions 92xx-K7: <BAME 04.07.268

Weakness classification (CWE)

CWE-291 — Reliance on IP Address for Authentication

References

r.sec-consult.com/dormakaba (technical-description)
r.sec-consult.com/dkaccess (third-party-advisory)
www.dormakabagroup.com/en/security-advisories (vendor-advisory)