Vulnerability Details CVE-2022-38742
Rockwell Automation ThinManager ThinServer versions 11.0.0 - 13.0.0 is vulnerable to a heap-based buffer overflow. An attacker could send a specifically crafted TFTP or HTTPS request, causing a heap-based buffer overflow that crashes the ThinServer process. If successfully exploited, this could expose the server to arbitrary remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.041
EPSS Ranking 88.1%
CVSS Severity
CVSS v3 Score 8.1
References
Products affected by CVE-2022-38742
-
cpe:2.3:a:rockwellautomation:thinmanager:11.0.0
-
cpe:2.3:a:rockwellautomation:thinmanager:11.0.1
-
cpe:2.3:a:rockwellautomation:thinmanager:11.0.2
-
cpe:2.3:a:rockwellautomation:thinmanager:11.0.3
-
cpe:2.3:a:rockwellautomation:thinmanager:11.0.4
-
cpe:2.3:a:rockwellautomation:thinmanager:11.0.5
-
cpe:2.3:a:rockwellautomation:thinmanager:11.1.0
-
cpe:2.3:a:rockwellautomation:thinmanager:11.1.1
-
cpe:2.3:a:rockwellautomation:thinmanager:11.1.2
-
cpe:2.3:a:rockwellautomation:thinmanager:11.1.3
-
cpe:2.3:a:rockwellautomation:thinmanager:11.1.4
-
cpe:2.3:a:rockwellautomation:thinmanager:11.1.5
-
cpe:2.3:a:rockwellautomation:thinmanager:11.1.8
-
cpe:2.3:a:rockwellautomation:thinmanager:11.2.0
-
cpe:2.3:a:rockwellautomation:thinmanager:11.2.1
-
cpe:2.3:a:rockwellautomation:thinmanager:11.2.10
-
cpe:2.3:a:rockwellautomation:thinmanager:11.2.2
-
cpe:2.3:a:rockwellautomation:thinmanager:11.2.3
-
cpe:2.3:a:rockwellautomation:thinmanager:11.2.4
-
cpe:2.3:a:rockwellautomation:thinmanager:11.2.5
-
cpe:2.3:a:rockwellautomation:thinmanager:11.2.6
-
cpe:2.3:a:rockwellautomation:thinmanager:11.2.9
-
cpe:2.3:a:rockwellautomation:thinmanager:12.0.0
-
cpe:2.3:a:rockwellautomation:thinmanager:12.0.1
-
cpe:2.3:a:rockwellautomation:thinmanager:12.0.2
-
cpe:2.3:a:rockwellautomation:thinmanager:12.0.3
-
cpe:2.3:a:rockwellautomation:thinmanager:12.0.4
-
cpe:2.3:a:rockwellautomation:thinmanager:12.0.7
-
cpe:2.3:a:rockwellautomation:thinmanager:12.0.8
-
cpe:2.3:a:rockwellautomation:thinmanager:12.1.0
-
cpe:2.3:a:rockwellautomation:thinmanager:12.1.1
-
cpe:2.3:a:rockwellautomation:thinmanager:12.1.2
-
cpe:2.3:a:rockwellautomation:thinmanager:12.1.3
-
cpe:2.3:a:rockwellautomation:thinmanager:12.1.4
-
cpe:2.3:a:rockwellautomation:thinmanager:12.1.5
-
cpe:2.3:a:rockwellautomation:thinmanager:12.1.8
-
cpe:2.3:a:rockwellautomation:thinmanager:12.1.9
-
cpe:2.3:a:rockwellautomation:thinmanager:13.0.0