CVE-2025-3618 Local Privilege Escalation Vulnerability

A denial-of-service vulnerability exists in the Rockwell Automation ThinManager. The software fails to adequately verify the outcome of memory allocation while processing Type 18 messages. If exploited, a threat actor could cause a denial-of-service on the target software...

CVE-2025-3618 Local Privilege Escalation Vulnerability

A denial-of-service vulnerability exists in the Rockwell Automation ThinManager. The software fails to adequately verify the outcome of memory allocation while processing Type 18 messages. If exploited, a threat actor could cause a denial-of-service on the target software...

CVE-2025-3617 Local Privilege Escalation in ThinManager®

A privilege escalation vulnerability exists in the Rockwell Automation ThinManager. When the software starts up, files are deleted in the temporary folder causing the Access Control Entry of the directory to inherit permissions from the parent directory. If exploited, a threat actor could inherit...

CVE-2025-3617

CVE-2025-3617 concerns the Rockwell Automation ThinManager product. The public materials describe a local privilege-escalation issue caused during startup when files in the temporary folder are deleted, causing the directory’s Access Control Entry to inherit permissions from the parent directory,...

CVE-2025-3617 Local Privilege Escalation in ThinManager®

A privilege escalation vulnerability exists in the Rockwell Automation ThinManager. When the software starts up, files are deleted in the temporary folder causing the Access Control Entry of the directory to inherit permissions from the parent directory. If exploited, a threat actor could inherit...

PT-2025-16369 · Rockwell Automation · Rockwell Automation Thinmanager

Name of the Vulnerable Software and Affected Versions: Rockwell Automation ThinManager affected versions not specified Description: A denial-of-service issue exists due to inadequate verification of memory allocation outcomes while processing Type 18 messages. This could allow a threat actor to...

Rockwell Automation ThinManager 安全漏洞

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers simultaneously. A security vulnerability exists in Rockwell Automation ThinManager that stems from insufficient validation o...

Rockwell Automation ThinManager 安全漏洞

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers simultaneously. A security vulnerability exists in Rockwell Automation ThinManager that stems from improper inheritance of...

PT-2025-16368 · Rockwell Automation · Rockwell Automation Thinmanager

Name of the Vulnerable Software and Affected Versions: Rockwell Automation ThinManager affected versions not specified Description: A privilege escalation issue exists in the Rockwell Automation ThinManager. When the software starts up, files are deleted in the temporary folder, causing the Acces...

Rockwell Automation ThinManager ThinServer Missing Authentication (CVE-2024-10386)

Binary data rockwellthinmanagerthinservercve-2024-10386.nbin...

The vulnerability of the ThinServer component of the Rockwell Automation ThinManager application management platform allows a attacker to execute arbitrary code.

The vulnerability of the ThinServer component of Rockwell Automation’s centralized application management platform, ThinManager, is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the ThinServer component of Rockwell Automation’s ThinManager platform for centralized application management allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the ThinServer component of Rockwell Automation’s ThinManager application management platform involves insecure management of privileges. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the ThinManager application management platform, developed by Rockwell Automation, arises from the possibility of sending queries to the database without going through authentication procedures. This allows attackers to make changes to the database.

The vulnerability of the Rockwell Automation ThinManager platform’s centralized application management interface lies in the ability to send requests to the database without going through authentication procedures. Exploiting this vulnerability allows a malicious actor to make changes to the...

The vulnerability of the ThinServer component of Rockwell Automation’s ThinManager application management platform, which stems from incorrect input validation, allows attackers to execute arbitrary code with system privileges.

The vulnerability of the ThinServer component of Rockwell Automation’s ThinManager application platform for centralized application management lies in the lack of proper input data validation. Exploiting this vulnerability can allow attackers to enhance their privileges...

Rockwell Automation ThinManager Authentication Error Vulnerability

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers simultaneously. Rockwell Automation ThinManager has an authentication error vulnerability that can be exploited by an attack...

Rockwell Automation ThinManager Denial of Service Vulnerability

Rockwell Automation ThinManager is a thin client management software from Rockwell Automation, Inc. It allows thin clients to be assigned to multiple remote desktop servers simultaneously. A denial of service vulnerability exists in Rockwell Automation ThinManager, which can be exploited by an...

CVE-2024-10387 Rockwell Automation FactoryTalk ThinManager Denial-of-Service Vulnerability

CVE-2024-10387 IMPACT A Denial-of-Service vulnerability exists in the affected product. The vulnerability could allow a threat actor with network access to send crafted messages to the device, potentially resulting in Denial-of-Service...

CVE-2024-10387 Rockwell Automation FactoryTalk ThinManager Denial-of-Service Vulnerability

CVE-2024-10387 IMPACT A Denial-of-Service vulnerability exists in the affected product. The vulnerability could allow a threat actor with network access to send crafted messages to the device, potentially resulting in Denial-of-Service...

CVE-2024-10386 Rockwell Automation FactoryTalk ThinManager Authentication Vulnerability

CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. The vulnerability could allow a threat actor with network access to send crafted messages to the device, potentially resulting in database manipulation...

CVE-2024-10386 Rockwell Automation FactoryTalk ThinManager Authentication Vulnerability

CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. The vulnerability could allow a threat actor with network access to send crafted messages to the device, potentially resulting in database manipulation...