Cameron Palmer

**Name of the Vulnerable Software and Affected Versions** Aiphone GT-DMB-N version 1.0.3 Aiphone GT-DMB, GT-DMB-N, and GT-DMB-LVN versions prior to 3.00 Aiphone GT-DB-VN versions 2.00 or earlier **Description** The issue allows an attacker to gain administrative privileges by exploiting the lack of protection against repeated failed access attempts. This can be done by using an NFC tag to brute-force the four-digit code, allowing the attacker to extract the administrator password. Once the password is obtained, the attacker can add a new NFC tag to the system, granting access to the building. The affected products do not store access logs, making it difficult for organizations to detect unauthorized access. **Recommendations** For Aiphone GT-DMB-N version 1.0.3, consider replacing the equipment as the issue cannot be resolved with a software update. For Aiphone GT-DMB, GT-DMB-N, and GT-DMB-LVN versions prior to 3.00, replace the equipment with a version released after 7 December 2021. For Aiphone GT-DB-VN versions 2.00 or earlier, replace the equipment with a version released after 7 December 2021. As a temporary workaround, consider restricting access to the NFC reader to minimize the risk of exploitation.