CVE-2026-45574

CVSS v3.1

8.1

High

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Impact

An attacker on the network path between the ePA service and the Konnektor can present any TLS certificate (self-signed, expired, wrong CN) and intercept all SOAP traffic. This includes patient identifiers (KVNR), SMC-B card operations (authentication, signing), document content, and credential exchanges.

Patches

#36

Workarounds

Use the library directly instead of the REST wrapper.

Resources

MS-OVIVA-EPA4ALL-771a78

Credits

Machine Spirits (contact@machinespirits.de)

Dr. rer. nat. Simon Weber
Dipl.-Inf. Volker Schönefeld
Chiara Fliegner

Fix

Improper Certificate Validation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-295

Related Identifiers

CVE-2026-45574

GHSA-5HHF-XMFX-4VVR

Affected Products

Com.Oviva.Telematik:Epa4All-Client

CVE-2026-45574

Impact

Patches

Workarounds

Resources

Credits

Weakness Enumeration

Related Identifiers

Affected Products

References · 6