ICSA-22-270-03
·
Published 2022-09-27
·
View on CISA ICS-CERT ↗
Rockwell Automation ThinManager ThinServer
CVSS 8.1
HIGH
Risk Summary
Successful exploitation of this vulnerability could lead to the software crashing; a buffer overflow condition may allow remote code execution.
CVEs (1)
Remediations
- Versions 11.0.0 through 11.0.4: Update to Version 11.00.05
- Versions 11.1.0 through 11.1.4: Update to Version 11.01.05
- Versions 11.2.0 through 11.2.5: Update to Version 11.02.06
- Versions 12.0.0 through 12.0.2: Update to Version 12.00.03
- Versions 12.1.0 through 12.1.3: Update to Version 12.01.04
- Version 13.0.0: Update to Version 13.00.01
- Rockwell Automation recommends users unable to update to the patched versions to block network access to the ThinManager TFTP and HTTPS ports from endpoints other than ThinManager managed thin clients.
- Users can access security best practices at Rockwell Automation's Knowledgebase article, QA43240 Security Best Practices.
- For more information, users should see Rockwell Automation's security advisory (login required).
Affected Vendors
Rockwell Automation
Affected Products (6)
Rockwell Automation
·
ThinManager ThinServer
13.0.0
Rockwell Automation
·
ThinManager ThinServer
>= 12.1.0 | <= 12.1.3
Rockwell Automation
·
ThinManager ThinServer
>= 11.2.0 | <= 11.2.5
Rockwell Automation
·
ThinManager ThinServer
>= 11.0.0 | <= 11.0.4
Rockwell Automation
·
ThinManager ThinServer
>= 11.1.0 | <= 11.1.4
Rockwell Automation
·
ThinManager ThinServer
>= 12.0.0 | <= 12.0.2
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more