CVE Catalog

CVE-2026-34022

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.12%

2th percentile - higher than 2% of all known CVEs

Summary

The Wertheim SafeController Family 65000, AssemblyVersion 6.11.8130.22319, uses weak custom cryptographic algorithms with hard-coded cryptographic keys to protect communication. An attacker in a man-in-the-middle position can decrypt the data traffic.

Risk Assessment

The risk to the organization is the potential for decryption of communications, which could lead to the exposure of sensitive information. An attacker may also gain knowledge of the encryption key by intercepting enough messages.

Recommendation

It is recommended to update the software to the latest version and implement stronger cryptographic algorithms. Additionally, consider monitoring network traffic to detect potential attacks.

Original NVD description (English source)

The Wertheim SafeController Family 65000, Controller 65000 - AssemblyVersion 6.11.8130.22319, uses weak custom cryptographic algorithms with hard-coded cryptographic keys to protect communication. An attacker in an adversary-in-the-middle position can decrypt the data traffic. During reassessment, it was possible to break the encryption/decryption routine and decrypt messages without knowledge of the encryption key. It was also possible to gain knowledge about the encryption key by intercepting enough messages.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS