CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Rockwellautomation: >> Thinserver Security Vulnerabilities

CVE-2024-5989

Due to an improper input validation, an unauthenticated threat actor can send a malicious message to invoke SQL injection into the program and cause a remote code execution condition on the Rockwell Automation ThinManager® ThinServer™.

CVSS Score

9.8

EPSS Score

0.018

Published

2024-06-25

CVE-2024-5990

Due to an improper input validation, an unauthenticated threat actor can send a malicious message to a monitor thread within Rockwell Automation ThinServer™ and cause a denial-of-service condition on the affected device.

CVSS Score

7.5

EPSS Score

0.002

Published

2024-06-25

CVE-2024-5988

Due to an improper input validation, an unauthenticated threat actor can send a malicious message to invoke a local or remote executable and cause a remote code execution condition on the Rockwell Automation ThinManager® ThinServer™.

CVSS Score

9.8

EPSS Score

0.029

Published

2024-06-25

Page 1

Vulnerabilities

Vulnerable Software

Rockwellautomation: >> Thinserver Security Vulnerabilities

Products

Pricing

Contact Us