CVE-2026-34022
HighCVSS 7.1Exploitation Probability (EPSS)
Low risk2th percentile - higher than 2% of all known CVEs
Summary
The Wertheim SafeController Family 65000, AssemblyVersion 6.11.8130.22319, uses weak custom cryptographic algorithms with hard-coded cryptographic keys to protect communication. An attacker in a man-in-the-middle position can decrypt the data traffic.
Risk Assessment
The risk to the organization is the potential for decryption of communications, which could lead to the exposure of sensitive information. An attacker may also gain knowledge of the encryption key by intercepting enough messages.
Recommendation
It is recommended to update the software to the latest version and implement stronger cryptographic algorithms. Additionally, consider monitoring network traffic to detect potential attacks.
Original NVD description (English source)
The Wertheim SafeController Family 65000, Controller 65000 - AssemblyVersion 6.11.8130.22319, uses weak custom cryptographic algorithms with hard-coded cryptographic keys to protect communication. An attacker in an adversary-in-the-middle position can decrypt the data traffic. During reassessment, it was possible to break the encryption/decryption routine and decrypt messages without knowledge of the encryption key. It was also possible to gain knowledge about the encryption key by intercepting enough messages.

