Описание
Dormakaba Saflok System 6000 contains a predictable key generation algorithm that allows attackers to derive card access keys from a 32-bit unique identifier. Attackers can exploit the deterministic key generation process by calculating valid access keys using a simple mathematical transformation of the card's unique identifier.
EPSS
Процентиль: 16%
0.00052
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-1245
Связанные уязвимости
CVSS3: 9.8
github
около 2 месяцев назад
Dormakaba Saflok System 6000 contains a predictable key generation algorithm that allows attackers to derive card access keys from a 32-bit unique identifier. Attackers can exploit the deterministic key generation process by calculating valid access keys using a simple mathematical transformation of the card's unique identifier.
EPSS
Процентиль: 16%
0.00052
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-1245