CVE-2025-59108

Summary

By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested version changing the password was not enforced.

Affected Software

VendorProductVersion RangeStatus
dormakabaAccess Manager 92xx-k592xx-K5: All versionsaffected
dormakabaAccess Manager 92xx-k792xx-K7: <BAME 04.07.268affected

Weaknesses

  • CWE-1392: CWE-1392: Use of Default Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References