Lucene search

CVE-2024-5989

🗓️ 25 Jun 2024 16:25:15Reported by RockwellType

cve🔗 web.nvd.nist.gov📰️ 105 Media mentions👁 59 Views

Improper input validation leading to SQL injection and remote code execution in Rockwell Automation ThinManager ThinServer

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
NVD	CVE-2024-5989	25 Jun 202416:15	–	nvd
CNVD	Rockwell Automation ThinManager ThinServer Input Validation Error Vulnerability (CNVD-2024-38543)	28 Jun 202400:00	–	cnvd
Vulnrichment	CVE-2024-5989 Rockwell Automation ThinManager® ThinServer™ Improper Input Validation Vulnerability	25 Jun 202416:01	–	vulnrichment
Cvelist	CVE-2024-5989 Rockwell Automation ThinManager® ThinServer™ Improper Input Validation Vulnerability	25 Jun 202416:01	–	cvelist
Tenable Nessus	Rockwell Automation ThinManager ThinServer SD1677 Multiple Vulnerabilites	25 Jun 202400:00	–	nessus
ICS	Rockwell Automation ThinManager ThinServer	11 Jul 202406:00	–	ics

Nvd

Node

rockwellautomation thinmanagerRange11.1.0–11.1.8

rockwellautomation thinmanagerRange11.2.0–11.2.9

rockwellautomation thinmanagerRange12.0.0–12.0.7

rockwellautomation thinmanagerRange12.1.0–12.1.8

rockwellautomation thinmanagerRange13.0.0–13.0.5

rockwellautomation thinmanagerRange13.1.0–13.1.3

rockwellautomation thinmanagerRange13.2.0–13.2.2

rockwellautomation thinserverRange11.1.0–11.1.8

rockwellautomation thinserverRange11.2.0–11.2.9

rockwellautomation thinserverRange12.0.0–12.0.7

rockwellautomation thinserverRange12.1.0–12.1.8

rockwellautomation thinserverRange13.0.0–13.0.5

rockwellautomation thinserverRange13.1.0–13.1.3

rockwellautomation thinserverRange13.2.0–13.2.2

[
  {
    "defaultStatus": "unaffected",
    "product": "ThinManager® ThinServer™",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "11.0.0"
      },
      {
        "status": "affected",
        "version": "11.2.0"
      },
      {
        "status": "affected",
        "version": "12.0.0"
      },
      {
        "status": "affected",
        "version": "12.1.0"
      },
      {
        "status": "affected",
        "version": "13.0.0"
      },
      {
        "status": "affected",
        "version": "13.1.0"
      },
      {
        "status": "affected",
        "version": "13.2.0"
      }
    ]
  }
]

Source	Link
rockwellautomation	www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1677.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Jun 2024 16:15Current

10High risk

Vulners AI Score10

CVSS39.8

CVSS49.3

EPSS0.00865

SSVC

CWE-20