Lucene search
K

14 matches found

CISA
CISA
added 2025/09/09 12:0 p.m.5 views

CISA Releases Fourteen Industrial Control Systems Advisories

CISA released fourteen Industrial Control Systems ICS advisories on September 9, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-252-01 Rockwell Automation ThinManager ICSA-25-252-02 ABB Cylon Aspect BMS/BAS...

6.5AI score
Exploits0References14
ICS
ICS
added 2024/09/12 6:0 a.m.19 views

Rockwell Automation ThinManager

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Rockwell Automation Equipment: ThinManager Vulnerability: Externally Controlled Reference to a Resource in Another Sphere 2. RISK EVALUATION Successful exploitation of this vulnerability could...

8.8CVSS9.1AI score0.11228EPSS
Exploits0References10
ICS
ICS
added 2024/08/29 6:0 a.m.27 views

Rockwell Automation ThinManager ThinServer

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION : Exploitable remotely/Low attack complexity Vendor : Rockwell Automation Equipment : ThinManager ThinServer Vulnerabilities : Improper Privilege Management, Incorrect Permission Assignment for Critical Resource, Improper Input Validation 2...

9.8CVSS8.3AI score0.01477EPSS
Exploits0References10
Zero Day Initiative
Zero Day Initiative
added 2024/08/22 12:0 a.m.13 views

Rockwell Automation ThinManager ThinServer Arbitrary File Read Information Disclosure Vulnerability

This vulnerability allows local attackers to read arbitrary files on affected installations of Rockwell Automation ThinManager. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS6.6AI score0.00559EPSS
Exploits0References1
CNVD
CNVD
added 2023/08/19 12:0 a.m.16 views

Rockwell Automation ThinManager ThinServer Input Validation Error Vulnerability

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers at the same time. An input validation error vulnerability exists in Rockwell Automation ThinManager ThinServer, which can be...

9.1CVSS7.2AI score0.78093EPSS
Exploits1References1
CNVD
CNVD
added 2023/08/19 12:0 a.m.19 views

Rockwell Automation ThinManager Path Traversal Vulnerability (CNVD-2023-64278)

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers simultaneously. A path traversal vulnerability exists in Rockwell Automation Thinmanager Thinserver, which stems from the...

9.8CVSS9.4AI score0.67838EPSS
Exploits1References1
NVD
NVD
added 2023/08/17 4:15 p.m.20 views

CVE-2023-2915

The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, Due to improper input validation, a path traversal vulnerability exists when the ThinManager software processes a certain function. If exploited, an unauthenticated remote threat actor can...

9.1CVSS8.5AI score0.78093EPSS
Exploits1References1
Prion
Prion
added 2023/08/17 4:15 p.m.16 views

Path traversal

The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, Due to improper input validation, a path traversal vulnerability exists when the ThinManager software processes a certain function. If exploited, an unauthenticated remote threat actor can...

6.4CVSS9.1AI score0.78093EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/08/17 3:10 p.m.26 views

CVE-2023-2917 Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerability

The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability. Due to an improper input validation, a path traversal vulnerability exists, via the filename field, when the ThinManager processes a certain function. If exploited, an unauthenticated remote...

9.8CVSS10AI score0.67838EPSS
Exploits1References1
Prion
Prion
added 2023/07/18 8:15 p.m.24 views

Path traversal

An executable used in Rockwell Automation ThinManager ThinServer can be configured to enable an API feature in the HTTPS Server Settings. This feature is disabled by default. When the API is enabled and handling requests, a path traversal vulnerability exists that allows a remote actor to leverag...

4CVSS6.3AI score0.01268EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/07/18 12:0 a.m.5 views

Rockwell Automation ThinManager 路径遍历漏洞

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers simultaneously. A path traversal vulnerability exists in Rockwell Automation ThinManager, which is caused by the program...

7.5CVSS7.6AI score0.01268EPSS
Exploits0References3
OSV
OSV
added 2023/05/11 7:15 p.m.4 views

CVE-2023-2443

Rockwell Automation ThinManager product allows the use of medium strength ciphers. If the client requests an insecure cipher, a malicious actor could potentially decrypt traffic sent between the client and server API...

7.5CVSS7.1AI score0.00666EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/11 12:0 a.m.5 views

Rockwell Automation ThinManager 加密问题漏洞

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers simultaneously. Rockwell Automation ThinManager has an encryption issue vulnerability that stems from allowing the use of...

7.5CVSS7.3AI score0.00666EPSS
Exploits0References3
CISA
CISA
added 2022/09/27 12:0 a.m.15 views

CISA Releases Three Industrial Control Systems Advisories

CISA has released three 3 Industrial Control Systems ICS advisories on September 27th, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisori...

2AI score
Exploits0References3
Rows per page
Query Builder