CVE-2025-59107
Unknown Unknown - Not Provided

Static Password Disclosure in Dormakaba FWServiceTool Firmware Updates

Vulnerability report for CVE-2025-59107, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-01-26

Last updated on: 2026-01-26

Assigner: SEC Consult Vulnerability Lab

Description

Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers via the network. The firmware in some instances is provided in an encrypted ZIP file. Within this tool, the password used to decrypt the ZIP and extract the firmware is set statically and can be extracted. This password was valid for multiple observed firmware versions.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-01-26
Last Modified
2026-01-26
Generated
2026-07-06
AI Q&A
2026-01-26
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
dormakaba fwservicetool *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-798 The product contains hard-coded credentials, such as a password or cryptographic key.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability involves the Dormakaba FWServiceTool software, which is used to update firmware on Access Managers over a network. The firmware is sometimes provided in an encrypted ZIP file, but the password to decrypt this ZIP file is hardcoded (set statically) within the tool and can be extracted. This means an attacker could obtain the password and decrypt the firmware files for multiple firmware versions.

Impact Analysis

An attacker who extracts the static password can decrypt the firmware files, potentially allowing them to analyze, modify, or replace firmware updates. This could lead to unauthorized firmware installation, compromising the security and integrity of the Access Managers, and possibly enabling further attacks or unauthorized access.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-59107. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart