CVE-2025-59094
Lifecycle Timeline
2DescriptionCVE.org
A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System management application (d9sysdef.exe). Within this application it is possible to specify an arbitrary executable as well as the weekday and start time, when the specified executable should be run with SYSTEM privileges.
AnalysisAI
A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System management application (d9sysdef.exe).
Technical ContextAI
Classified as CWE-269 (Improper Privilege Management). A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System management application (d9sysdef.exe). Within this application it is possible to specify an arbitrary executable as well as the weekday and start time, when the specified executable should be run with SYSTEM privileges.
Affected ProductsAI
A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System management application (d9sysdef.exe). Within this applica
RemediationAI
Monitor vendor advisories for a patch.
Same weakness CWE-269 – Improper Privilege Management
View allSame technique Privilege Escalation
View allShare
External POC / Exploit Code
Leaving vuln.today