VYPR
Unrated severityNVD Advisory· Published Aug 23, 2024· Updated Aug 28, 2024

Rockwell Automation ThinManager® ThinServer™ Information Disclosure

CVE-2024-7986

Description

A vulnerability exists in the Rockwell Automation ThinManager® ThinServer that allows a threat actor to disclose sensitive information. A threat actor can exploit this vulnerability by abusing the ThinServer™ service to read arbitrary files by creating a junction that points to the target directory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Rockwellautomation/ThinManagerllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 11.1.0-11.1.7 11.2.0-11.2.8 12.0.0-12.0.6 12.1.0-12.1.7 13.0.0-13.0.4 13.1.0-13.1.2 13.2.0-13.2.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.