CVE-2022-38742

Name of the Vulnerable Software and Affected Versions Rockwell Automation ThinManager ThinServer versions 11.0.0 through 13.0.0

Description The issue is related to a heap-based buffer overflow in the ThinServer component of Rockwell Automation ThinManager. This can be exploited by sending a specifically crafted TFTP or HTTPS request, causing a heap-based buffer overflow that crashes the ThinServer process. If successfully exploited, this could expose the server to arbitrary remote code execution.

Recommendations For versions 11.0.0 through 13.0.0, consider disabling the ThinServer process until a patch is available to prevent exploitation. Restrict access to TFTP and HTTPS requests to minimize the risk of remote code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.