CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-2914

The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, an integer overflow condition exists in the affected products. When the ThinManager processes incoming messages, a read access violation occurs and terminates the process. A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and causing a denial of service condition in the software.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.242

EPSS Ranking 95.9%

CVSS Severity

CVSS v3 Score 7.5

References

https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140471
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140471

Products affected by CVE-2023-2914

Rockwellautomation » Thinmanager Thinserver » Version: Any

cpe:2.3:a:rockwellautomation:thinmanager_thinserver:*
Rockwellautomation » Thinmanager Thinserver » Version: 13.1.0

cpe:2.3:a:rockwellautomation:thinmanager_thinserver:13.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2914

Products

Pricing

Contact Us