Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-64278
HistoryAug 19, 2023 - 12:00 a.m.

Rockwell Automation ThinManager Path Traversal Vulnerability (CNVD-2023-64278)

2023-08-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
rockwell automation thinmanager
path traversal
vulnerability
arbitrary files
disk drive
thin client management software
remote desktop servers

0.001 Low

EPSS

Percentile

41.4%

JSON

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers at the same time. A path traversal vulnerability exists in Rockwell Automation Thinmanager Thinserver, which stems from the filename field failing to properly filter special elements in the path of a resource or file. An attacker could use this vulnerability to upload arbitrary files to any directory on a disk drive.

Related

cvelist 1
prion 1
cve 1
nvd 1
nessus 1
ics 1
cvelist
cvelist
CVE-2023-2917 Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerability
2023-08-17 15:10:08
prion
prion
Path traversal
2023-08-17 16:15:00
cve
cve
CVE-2023-2917
2023-08-17 16:15:09
nvd
nvd
CVE-2023-2917
2023-08-17 16:15:09
nessus
nessus
Rockwell Automation ThinManager ThinServer Path Traversal File Upload (CVE-2023-2917)
2023-08-25 00:00:00
ics
ics
Rockwell Automation ThinManager ThinServer
2023-08-22 12:00:00

0.001 Low

EPSS

Percentile

41.4%

JSON
Related for CNVD-2023-64278
cvelist1prion1cve1nvd1nessus1ics1