Vulnerability in dormakaba Saflok System Exposes Hotel Door Locks
CVE-2024-29916
Currently unrated
What is CVE-2024-29916?
The dormakaba Saflok system, prior to the November 2023 software update, is susceptible to unauthorized access, allowing an attacker to unlock doors using forged keycards. If an attacker has access to either an active or expired keycard for the property, they can exploit this vulnerability, known as the 'Unsaflok' issue. This occurs because the key derivation process relies solely on a unique identifier (UID), which can be manipulated. This vulnerability compromises security in various products, including the Saflok MT, as well as the Confidant, Quantum, RT, and Saffire series.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.