Primary

Context

dormakaba Kaba exos 9300 Local Privilege Escalation Vulnerability

Vulnerability

Patched

A local privilege escalation vulnerability exists in the dormakaba Kaba exos 9300 System management application (d9sysdef.exe). The vulnerability allows users to specify an arbitrary executable to be run with SYSTEM privileges, scheduled for execution at a chosen time and day of the week.

Impact

Exploitation of this vulnerability allows for local privilege escalation, where a user can execute arbitrary code with SYSTEM privileges on the Windows server running Kaba exos 9300.

Reproduction

To reproduce this vulnerability, access the 'Automatic program starts' feature in the Kaba exos 9300 System management application. Specify a path to an executable file, along with the desired start time and weekday for execution. Once scheduled, the application will run the specified executable as a background process with SYSTEM privileges.

Remediation

Users are advised to update to Kaba exos 9300 version 4.4.1 or later, where this vulnerability has been addressed.

Added: Jan 26, 2026, 10:19 AM

Updated: Jan 26, 2026, 3:28 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.9

remediation

0.0

relevance

2.4

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.9

remediation

0.0

relevance

2.4

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

dormakaba Kaba exos 9300 Local Privilege Escalation Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

dormakaba Kaba exos 9300

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating