Rockwellautomation: >> Thinmanager >> 13.2.4 Security Vulnerabilities
A server-side request forgery security issue exists within Rockwell Automation ThinManager® software due to the lack of input sanitization. Authenticated attackers can exploit this vulnerability by specifying external SMB paths, exposing the ThinServer® service account NTLM hash.
CVSS Score
8.8
EPSS Score
0.0
Published
2025-09-09