Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerability
CVE-2023-2917

9.8CRITICAL

Key Information:

Vendor: Rockwell Automation
Status: Thinmanager Thinserver
Vendor: CVE Published:; 17 August 2023

Summary

The Rockwell Automation ThinManager Thinserver has a vulnerability due to improper input validation, leading to a path traversal issue. When processing specific functions, the ThinManager can be manipulated through the filename field. This allows unauthenticated remote attackers to upload arbitrary files to any directory on the disk drive where ThinServer.exe is installed. Through the exploitation of this vulnerability, a malicious actor could potentially send a crafted synchronization protocol message, which could lead to remote code execution.

Affected Version(s)

ThinManager ThinServer 11.0.0 - 11.2.6

ThinManager ThinServer 11.1.0 - 11.1.6

ThinManager ThinServer 11.2.0 - 11.2.7

References

https://rockwellautomation.custhelp.com/app/answers/answe...

EPSS Score

28% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 17, 2023
Vulnerability Reserved
May 26, 2023

Credit

This vulnerability was reported to Rockwell Automation by Tenable Network Security.