These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-34028 is a medium-severity vulnerability in Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014. The vulnerability exposes web-accessible file paths that are not protected by an authorization scheme, allowing an unauthenticated attacker to directly access HTTP endpoints to download files from locations such as /Resources/CompanyId_[ID]/Audio/ and /SafeData/. The CVSS score for this [truncated]
The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains a vulnerability in the /safe/contract/uploadcustomdocuments endpoint. The application validates uploaded files based on the user-controlled HTTP Content-Type value and accepts the upload if this value contains an allowed string such as pdf, jpeg, tiff, or png. An authenticated attacker with any role or permission level can spo [truncated]
CVE-2026-34026 is a path traversal vulnerability in Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014. The vulnerability exists in the documentName parameter of the /safe/selfservice/openselfservicedocument endpoint. An authenticated attacker with any role or permission level can exploit this vulnerability to traverse out of the intended document directory and download arbitrary files acce [truncated]
The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an IP restriction bypass vulnerability in the login process. The application restricts user logins based on the IP address associated with a branch location, but the client IP address is derived from the HTTP X-Forwarded-For header when that header is present. An attacker with valid branch user credentials can manipulate the X [truncated]
CVE-2026-34024 is a high-severity vulnerability in Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014. The vulnerability allows an authenticated attacker with minimal privileges to access multiple web application endpoints that are not visible in the frontend. This access enables the attacker to perform restricted actions such as switching the user's branch, uploading arbitrary files, downl [truncated]
CVE-2026-34023 is an incorrect authorization vulnerability in the Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014. The vulnerability exists in the WebSocket communication used by the SafeController WebMessageBroker. An authenticated attacker with valid low-privileged branch user credentials can manipulate WebSocket messages by specifying controller identifiers belonging to other branches [truncated]
The Wertheim SafeController Family 65000, specifically Controller 65000 with AssemblyVersion 6.11.8130.22319, employs weak custom cryptographic algorithms with hard-coded cryptographic keys to secure communication. This vulnerability enables an adversary-in-the-middle to decrypt data traffic. Furthermore, during reassessment, it was found possible to break the encryption/decryption routine and decrypt mes [truncated]
The Wertheim SafeController 5400, specifically Controller 5400 - AssemblyVersion 6.11.8130.22320, has a security vulnerability due to its use of RS-485 communication between the server and the microcontroller without cryptographic protection. This lack of protection allows an attacker with access to the communication path to sniff RS-485 messages and replay previously observed messages. Such an attack can [truncated]
