CVE-2024-7986

Name of the Vulnerable Software and Affected Versions: Rockwell Automation ThinManager ThinServer versions 11.1.0 through 11.1.7 Rockwell Automation ThinManager ThinServer versions 11.2.x Rockwell Automation ThinManager ThinServer versions 12.x Rockwell Automation ThinManager ThinServer versions 13.x

Description: A vulnerability exists in the Rockwell Automation ThinManager ThinServer that allows a threat actor to disclose sensitive information. A threat actor can exploit this vulnerability by abusing the ThinServer service to read arbitrary files by creating a junction that points to the target directory.

Recommendations: For versions 11.1.0 through 11.1.7, update to version 11.1.8 to resolve the issue. For version 11.2.x, update to version 11.2.9 to resolve the issue. For version 12.x, update to version 12.0.7 or 12.1.0 to resolve the issue. For version 13.x, update to version 13.0.0 to resolve the issue. As a temporary workaround, consider restricting access to the ThinServer service to minimize the risk of exploitation.