CVE-2025-59107
Unknown Unknown - Not Provided
Static Password Disclosure in Dormakaba FWServiceTool Firmware Updates

Publication date: 2026-01-26

Last updated on: 2026-01-26

Assigner: SEC Consult Vulnerability Lab

Description
Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers via the network. The firmware in some instances is provided in an encrypted ZIP file. Within this tool, the password used to decrypt the ZIP and extract the firmware is set statically and can be extracted. This password was valid for multiple observed firmware versions.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-26
Last Modified
2026-01-26
Generated
2026-06-16
AI Q&A
2026-01-26
EPSS Evaluated
2026-06-15
NVD
CVE-2025-59107
EUVD
EUVD-2025-206367
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
dormakaba fwservicetool *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-798 The product contains hard-coded credentials, such as a password or cryptographic key.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability involves the Dormakaba FWServiceTool software, which is used to update firmware on Access Managers over a network. The firmware is sometimes provided in an encrypted ZIP file, but the password to decrypt this ZIP file is hardcoded (set statically) within the tool and can be extracted. This means an attacker could obtain the password and decrypt the firmware files for multiple firmware versions.

Impact Analysis

An attacker who extracts the static password can decrypt the firmware files, potentially allowing them to analyze, modify, or replace firmware updates. This could lead to unauthorized firmware installation, compromising the security and integrity of the Access Managers, and possibly enabling further attacks or unauthorized access.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-59107. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart