PatchSiren cyber security CVE debrief
CVE-2026-34025 Wertheim GmbH CVE debrief
The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an IP restriction bypass vulnerability in the login process. The application restricts user logins based on the IP address associated with a branch location, but the client IP address is derived from the HTTP X-Forwarded-For header when that header is present. An attacker with valid branch user credentials can manipulate the X-Forwarded-For header during login to spoof the expected branch IP address and obtain a valid authenticated session from an unauthorized network location.
- Vendor
- Wertheim GmbH
- Product
- Wertheim SafeController Software for VAULT ROOMS (Safe Deposit Locker System)
- CVSS
- MEDIUM 5.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-15
- Original CVE updated
- 2026-06-15
- Advisory published
- 2026-06-15
- Advisory updated
- 2026-06-15
Who should care
Users of Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, should be aware of this vulnerability and take steps to mitigate it.
Technical summary
The vulnerability has a CVSS score of 5.3 and a severity of MEDIUM. It can be exploited by an attacker with valid branch user credentials.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply patches or updates to fix the vulnerability.
- Restrict access to the login process to trusted IP addresses.
- Monitor login attempts and user activity for suspicious behavior.
Evidence notes
The vulnerability was reported by Sec Consult.
Official resources
-
CVE-2026-34025 CVE record
CVE.org
-
CVE-2026-34025 NVD detail
NVD
-
Source item URL
nvd_modified
-
Source reference
551230f0-3615-47bd-b7cc-93e92e730bbf
-
Source reference
551230f0-3615-47bd-b7cc-93e92e730bbf
CVE-2026-34025 was published on 2026-06-15T12:16:24.867Z and has not been modified since then.