CVE-2026-34024

Vulnerability

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains missing authorization checks on multiple web application endpoints. An authenticated attacker with minimal privileges can access endpoints that are not visible in the frontend but remain directly reachable [1]. This allows the attacker to perform restricted actions such as switching the user's branch, uploading arbitrary files, downloading arbitrary files, and viewing details of arbitrary branches.

Exploitation

An attacker requires network access to the SafeController web interface and valid credentials with the lowest privilege level. No additional user interaction is needed. By sending crafted HTTP requests to hidden endpoints, the attacker can enumerate and invoke functions that should require higher privileges. For example, the attacker can switch the current branch assignment, upload arbitrary files to the server, and download files or data from other branches [1].

Impact

Successful exploitation leads to unauthorized disclosure of sensitive data (branch details, files), potential integrity compromise through arbitrary file uploads (which may lead to remote code execution if uploaded files are executed), and unauthorized branch operations. The attacker gains a significant foothold within the application, potentially escalating privileges through file upload or further exploiting other vulnerabilities [1].

Mitigation

The vendor has provided a patch; however, specific version information was not disclosed. Administrators should contact Wertheim directly to request the update and apply it immediately [1]. Until patched, restrict network access to the web interface and apply strict firewall rules. Ensure the application service runs with the least privileges necessary to limit the impact of potential exploits [1].