Hard-coded cryptographic key in Wertheim SafeController Software allows decryption of sensitive configuration data
Summary
| CVE | CVE-2026-34029 |
|---|---|
| State | PUBLISHED |
| Assigner | SEC-VLab |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2026-06-15 12:16:25 UTC |
| Updated | 2026-06-15 21:05:18 UTC |
| Description | The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains a hard-coded cryptographic key in the SafeSystem.Infrastructure.Security.dll component. An attacker with access to the application files can reverse engineer the DLL and recover the hard-coded cryptographic key. This key can be used to decrypt the licence.whs file, which contains sensitive information about the licensing party and a second key that can be used to decrypt other configuration files. |
Risk And Classification
Primary CVSS: v4.0 6.8 MEDIUM from 551230f0-3615-47bd-b7cc-93e92e730bbf
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS: 0.001200000 probability, percentile 0.021170000 (date 2026-06-22)
Problem Types: CWE-321 | CWE-321 CWE-321 Use of hard-coded cryptographic key
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 4.0 | 551230f0-3615-47bd-b7cc-93e92e730bbf | Secondary | 6.8 | MEDIUM | CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/C... |
| 4.0 | CNA | CVSS | 6.8 | MEDIUM | CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
CVSS v4.0 Breakdown
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Wertheim GmbH | Wertheim SafeController Software For VAULT ROOMS Safe Deposit Locker System | affected Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014 | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| wertheim-safes.com/safe-deposit-box-management | 551230f0-3615-47bd-b7cc-93e92e730bbf | wertheim-safes.com | |
| r.sec-consult.com/wertheim | 551230f0-3615-47bd-b7cc-93e92e730bbf | r.sec-consult.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
Discovery Credit
CNA: Christian Hager, SEC Consult Vulnerability Lab (en)
CNA: Gorazd Jank, SEC Consult Vulnerability Lab (en)
CNA: Philipp Espernberger, SEC Consult Vulnerability Lab (en)
Additional Advisory Data
Solutions
CNA: The vendor provides a patch which should be installed immediately. Specific fixed version information was not provided. Affected parties should contact the vendor to request the update.
Workarounds
CNA: Restrict filesystem and backup access to the SafeController application installation directory and related configuration files. Ensure that application binaries, licence.whs, and configuration files are not exposed through web-accessible paths or document download functionality. Rotate affected keys and secrets where possible after installing the vendor-provided patch. These measures should only be treated as interim risk reduction; the vendor-provided patch should be installed.