VYPR
← All advisories
Medium severityNVD Advisory· Published Jun 15, 2026

CVE-2026-34028

CVE-2026-34028

Description

Wertheim SafeController Software 6.15.8328.28014 exposes unprotected file paths allowing unauthenticated attackers to download sensitive files.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Wertheim SafeController Software 6.15.8328.28014 exposes unprotected file paths allowing unauthenticated attackers to download sensitive files.

Vulnerability

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains unprotected web-accessible file paths. Specifically, HTTP endpoints under /Resources/CompanyId_[ID]/Audio/ and /SafeData/ are not protected by an authorization scheme, allowing direct file access. [1]

Exploitation

An unauthenticated attacker can send HTTP GET requests to these endpoints to download files without any authentication or prior interaction. No special network position is required beyond network access to the application.

Impact

Successful exploitation leads to unauthorized disclosure of files stored in those directories, potentially including sensitive data such as audio recordings or safe deposit information. The attacker gains read access to these files without any privilege escalation.

Mitigation

The vendor has released a patch; however, specific version information was not provided. Users should contact Wertheim directly to obtain the update and apply it immediately. [1] Until patched, restricting network access to the SafeController interface may reduce exposure.

References
  1. Multiple Critical Vulnerabilities in Wertheim SafeController Software for VAULT ROOMS (Safe Deposit Locker System)

AI Insight generated on Jun 15, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

1

Patches

0

No patches discovered yet.

Vulnerability mechanics

Root cause

"HTTP endpoints for file paths such as /Resources/CompanyId_[ID]/Audio/ and /SafeData/ lack any authorization check, allowing unauthenticated direct access."

Attack vector

An unauthenticated attacker directly requests unprotected HTTP endpoints on the web server — for example /Resources/CompanyId_[ID]/Audio/ or /SafeData/ — to download files or execute binaries stored at those paths [CWE-306] [ref_id=1]. No session, credentials, or prior access is required, making the attack surface fully exposed to any network‑reachable adversary [ref_id=1].

Affected code

The SafeController Software (AssemblyVersion 6.15.8328.28014) exposes HTTP endpoints such as /Resources/CompanyId_[ID]/Audio/ and /SafeData/ that lack any authorization check [ref_id=1].

What the fix does

No patch is included in the bundle. The advisory [ref_id=1] identifies that the affected HTTP endpoints lack any authorization scheme; to remediate, the vendor must implement authentication and authorization checks on all web-accessible file paths before serving resources.

Preconditions

  • networkNetwork access to the SafeController web server
  • authNo authentication or session required

Generated on Jun 15, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

2

News mentions

0

No linked articles in our index yet.