Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.ROCKWELL_THINMANAGER_THINSERVER_CVE-2023-27855.NBINHistoryApr 04, 2023 - 12:00 a.m.
Rockwell Automation ThinManager ThinServer Path Traversal File Upload (CVE-2023-27855)
2023-04-0400:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
rockwell automation
thinmanager
thinserver
path traversal
file upload
cve-2023-27855
scanner
binary data
0.002 Low
EPSS
Percentile
51.6%
The Rockwell Automation ThinManager ThinServer running on the remote host is affected by a path traversal vulnerability due to the lack of proper validation of user-supplied data. An unauthenticated, remote attacker can exploit this, via specially crafted messages, to upload arbitrary files to the remote host.
Binary data rockwell_thinmanager_thinserver_cve-2023-27855.nbin| Vendor | Product | Version | CPE |
|---|---|---|---|
| rockwellautomation | thinmanager | cpe:/a:rockwellautomation:thinmanager |
Related
prion
prion
Path traversal
2023-03-22 00:15:00
cnvd
cnvd
Rockwell Automation ThinManager ThinServer Path Traversal Vulnerability
2023-03-23 00:00:00
cvelist
cvelist
cve
cve
CVE-2023-27855
2023-03-22 00:15:12
nvd
nvd
CVE-2023-27855
2023-03-22 00:15:12
ics
ics
Rockwell Automation ThinManager
2023-03-21 12:00:00