CVE-2026-34025
Received Received - Intake
IP Restriction Bypass in Wertheim SafeController Software

Publication date: 2026-06-15

Last updated on: 2026-06-15

Assigner: SEC Consult Vulnerability Lab

Description
The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an IP restriction bypass vulnerability in the login process. The application restricts user logins based on the IP address associated with a branch location, but the client IP address is derived from the HTTP X-Forwarded-For header when that header is present. An attacker with valid branch user credentials can manipulate the X-Forwarded-For header during login to spoof the expected branch IP address and obtain a valid authenticated session from an unauthorized network location.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-15
Last Modified
2026-06-15
Generated
2026-06-15
AI Q&A
2026-06-15
EPSS Evaluated
N/A
NVD
CVE-2026-34025
EUVD
EUVD-2026-36708
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
wertheim safecontroller 6.15.8328.28014
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-290 This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

The vulnerability exists in the Wertheim SafeController Software, version 6.15.8328.28014, where the login process is supposed to restrict user access based on the IP address of a branch location.

However, the software determines the client's IP address from the HTTP X-Forwarded-For header if it is present.

An attacker who already has valid branch user credentials can manipulate this X-Forwarded-For header to spoof the expected branch IP address.

This allows the attacker to bypass the IP restriction and obtain a valid authenticated session from an unauthorized network location.

Impact Analysis

This vulnerability can allow an attacker with valid user credentials to bypass IP-based access controls.

As a result, the attacker can gain unauthorized access to the system from locations that should be restricted.

This could lead to unauthorized actions within the application, potential data exposure, and compromise of branch-specific security policies.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-34025. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart