CVE-2024-10386

Name of the Vulnerable Software and Affected Versions Rockwell Automation ThinManager (affected versions not specified)

Description An authentication issue exists in the affected product, allowing a threat actor with network access to send crafted messages to the device, potentially resulting in database manipulation. The vulnerability is related to the possibility of sending requests to the database without passing the authentication procedure. This could enable a remote attacker to make changes to the database by sending specially formed messages.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.