Rockwellautomation Thinmanager Thinserver
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Rockwellautomation Thinmanager Thinserver.
By the Year
In 2026 there have been 0 vulnerabilities in Rockwellautomation Thinmanager Thinserver. Thinmanager Thinserver did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 2 | 7.50 |
| 2023 | 4 | 8.48 |
It may take a day or so for new Thinmanager Thinserver vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Rockwellautomation Thinmanager Thinserver Security Vulnerabilities
RCE in Rockwell ThinServer via Junction Abuse
CVE-2024-7987
- August 26, 2024
A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer that allows a threat actor to execute arbitrary code with System privileges. To exploit this vulnerability and a threat actor must abuse the ThinServer service by creating a junction and use it to upload arbitrary files.
Rockwell ThinServer Arbitrary File Read via Junction Abuse
CVE-2024-7986
7.5 - High
- August 23, 2024
A vulnerability exists in the Rockwell Automation ThinManager® ThinServer that allows a threat actor to disclose sensitive information. A threat actor can exploit this vulnerability by abusing the ThinServer service to read arbitrary files by creating a junction that points to the target directory.
Thinmanager Thinserver Path Traversal Permits Unauth Upload & RCE
CVE-2023-2917
9.8 - Critical
- August 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability. Due to an improper input validation, a path traversal vulnerability exists, via the filename field, when the ThinManager processes a certain function. If exploited, an unauthenticated remote attacker can upload arbitrary files to any directory on the disk drive where ThinServer.exe is installed. A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and potentially gain remote code execution abilities.
Directory traversal
Rockwell ThinServer Path Traversal Enables File Deletion & DoS
CVE-2023-2915
9.1 - Critical
- August 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, Due to improper input validation, a path traversal vulnerability exists when the ThinManager software processes a certain function. If exploited, an unauthenticated remote threat actor can delete arbitrary files with system privileges. A malicious user could exploit this vulnerability by sending a specifically crafted synchronization protocol message resulting in a denial-of-service condition.
Directory traversal
DoS in Rockwell Automation Thinmanager Thinserver via Integer Overflow
CVE-2023-2914
7.5 - High
- August 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, an integer overflow condition exists in the affected products. When the ThinManager processes incoming messages, a read access violation occurs and terminates the process. A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and causing a denial of service condition in the software.
Integer Overflow or Wraparound
Path Traversal in Rockwell Automation ThinManager ThinServer
CVE-2023-27856
7.5 - High
- March 22, 2023
In affected versions, path traversal exists when processing a message of type 8 in Rockwell Automation's ThinManager ThinServer. An unauthenticated remote attacker can exploit this vulnerability to download arbitrary files on the disk drive where ThinServer.exe is installed.
Directory traversal
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Rockwellautomation Thinmanager Thinserver or by Rockwellautomation? Click the Watch button to subscribe.
