CVE-2026-34026 HIGH

CVE-2026-34026: Path traversal in Wertheim SafeController Software allows authenticated users to download arbitrary files

Vendor Wertheim Gmbh
Product Wertheim SafeController Software for VAULT ROOMS (Safe Deposit Locker System)
Weakness CWE-23
Published June 15, 2026
Last update June 15, 2026

CVSS base score

7.1/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains a path traversal vulnerability in the documentName parameter of the /safe/selfservice/openselfservicedocument endpoint. The application constructs a file path using attacker-controlled input without sufficient validation, allowing an authenticated attacker with any role or permission level to traverse out of the intended document directory and download arbitrary files accessible to the application. This includes, but is not limited to, application log files containing sensitive information and application binaries.

Key dates

02Disclosure timeline

June 15, 2026 CVE published
June 15, 2026 Record updated