Vulnerability in Dormakaba Registration Unit 9002

CVE-2025-59109

The dormakaba registration units 9002 (PIN Pad Units) have an exposed UART header on the backside. The PIN pad is sending every button press to the UART interface. An attacker can use the interface to exfiltrate PINs. As the devices are ex…

EPSS: 0.000 (10.5th percentile) — read the EPSS interpretation.

Affected products

Dormakaba Registration Unit 9002 — versions <SW0039

Weakness classification (CWE)

CWE-1295

References

r.sec-consult.com/dormakaba (technical-description)
r.sec-consult.com/dkaccess (third-party-advisory)
www.dormakabagroup.com/en/security-advisories (vendor-advisory)