CVE-2024-58311

Name of the Vulnerable Software and Affected Versions Dormakaba Saflok System 6000 (affected versions not specified)

Description The Dormakaba Saflok System 6000 uses a key generation algorithm that is predictable. This allows attackers to calculate card access keys from a 32-bit unique identifier. The deterministic key generation process can be exploited by calculating valid access keys through a mathematical transformation of the card's unique identifier, card id.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.