Rockwell Automation ThinManager

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to potentially perform remote code execution on the target or crash the software.

CVEs (3)

Remediations

• Rockwell Automation customers are directed towards the risk mitigations provided below, and are encouraged, when possible, to combine these mitigations with the general security guidelines to employ multiple strategies simultaneously.
• Rockwell Automation has released the following updates for the affected versions:
• Versions 6.x - 10.x: These versions are retired. Please update to supported version.
• Versions 11.0.0 - 11.0.5: Update to v11.0.6
• Versions 11.1.0 - 11.1.5: Update to v11.1.6
• Versions 11.2.0 - 11.2.6: Update to v11.2.7
• Versions 12.0.0 - 12.0.4: Update to v12.0.5
• Versions 12.1.0 - 12.1.5: Update to v12.1.6
• Versions 13.0.0 - 13.0.1: Update to v13.0.2
• If customers are unable to update to the patched version, the following mitigations should be put in place:
• Limiting remote access to TCP port 2031 to known thin clients and ThinManager servers would limit some access to exploit this vulnerability.
• For additional security best practices, please see Rockwell Automation’s Knowledgebase article, QA43240 Security Best Practices, to maintain the security posture of your environment.

Affected Vendors

Affected Products (7)

Affected Sectors

Critical Manufacturing