CVE-2023-2914 - Vulnerability Details - OpenCVE

The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, an integer overflow condition exists in the affected products. When the ThinManager processes incoming messages, a read access violation occurs and terminates the process. A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and causing a denial of service condition in the software.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.24162.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Rockwellautomation Subscribe	Thinmanager Thinserver Subscribe

Configuration 1 [-]

OR	cpe:2.3:a:rockwellautomation:thinmanager_thinserver::::::::
	cpe:2.3:a:rockwellautomation:thinmanager_thinserver::::::::
	cpe:2.3:a:rockwellautomation:thinmanager_thinserver::::::::
	cpe:2.3:a:rockwellautomation:thinmanager_thinserver::::::::
	cpe:2.3:a:rockwellautomation:thinmanager_thinserver::::::::
	cpe:2.3:a:rockwellautomation:thinmanager_thinserver::::::::
	cpe:2.3:a:rockwellautomation:thinmanager_thinserver:13.1.0:::::::*

No data.

No data.

Advisories

No advisories yet.

Fixes

Solution

* Update to the corrected software versions. * Limit remote access for TCP Port 2031 to known thin clients and ThinManager servers.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140471

History

Tue, 08 Oct 2024 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Rockwell

Published: 2023-08-17T15:01:25.994Z

Updated: 2024-10-08T17:08:30.894Z

Reserved: 2023-05-26T13:23:41.377Z

Link: CVE-2023-2914

Vulnrichment

Updated: 2024-08-02T06:41:03.723Z

NVD

Status : Modified

Published: 2023-08-17T16:15:09.513

Modified: 2024-11-21T07:59:33.587

Link: CVE-2023-2914

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-2914", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "state": "PUBLISHED", "assignerShortName": "Rockwell", "dateReserved": "2023-05-26T13:23:41.377Z", "datePublished": "2023-08-17T15:01:25.994Z", "dateUpdated": "2024-10-08T17:08:30.894Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "ThinManager ThinServer", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "11.0.0 - 11.2.6"}, {"status": "affected", "version": "11.1.0 - 11.1.6"}, {"status": "affected", "version": "11.2.0 - 11.2.7"}, {"status": "affected", "version": "12.0.0 - 12.0.5"}, {"status": "affected", "version": "12.1.0 - 12.1.6"}, {"status": "affected", "version": "13.0.0 - 13.0.2"}, {"status": "affected", "version": "13.1.0"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "This vulnerability was reported to Rockwell Automation by Tenable Network Security."}], "datePublic": "2023-08-17T14:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, an integer overflow condition exists in the affected products. When the ThinManager processes incoming messages, a read access violation occurs and terminates the process. A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and causing a denial of service condition in the software. "}], "value": "The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, an integer overflow condition exists in the affected products. When the ThinManager processes incoming messages, a read access violation occurs and terminates the process. A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and causing a denial of service condition in the software. "}], "impacts": [{"capecId": "CAPEC-126", "descriptions": [{"lang": "en", "value": "CAPEC-126 Path Traversal"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2023-08-17T15:03:27.110Z"}, "references": [{"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140471"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<ul><li>Update to the corrected software versions.</li><li>Limit remote access for TCP Port 2031 to known thin clients and ThinManager servers.</li></ul>"}], "value": "\n * Update to the corrected software versions.\n * Limit remote access for TCP Port 2031 to known thin clients and ThinManager servers.\n\n\n"}], "source": {"discovery": "UNKNOWN"}, "title": "Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerabilitiy", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T06:41:03.723Z"}, "title": "CVE Program Container", "references": [{"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140471", "tags": ["x_transferred"]}]}, {"affected": [{"vendor": "rockwellautomation", "product": "thinmanager_thinserver", "cpes": ["cpe:2.3:a:rockwellautomation:thinmanager_thinserver:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "11.0.0 - 11.2.6", "status": "affected"}, {"version": "11.1.0 - 11.1.6", "status": "affected"}, {"version": "11.2.0 - 11.2.7", "status": "affected"}, {"version": "12.0.0 - 12.0.5", "status": "affected"}, {"version": "12.1.0 - 12.1.6", "status": "affected"}, {"version": "13.0.0 - 13.0.2", "status": "affected"}, {"version": "13.1.0", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-08T17:05:51.847648Z", "id": "CVE-2023-2914", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-08T17:08:30.894Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140471", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T06:41:03.723Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-2914", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-10-08T17:05:51.847648Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:rockwellautomation:thinmanager_thinserver:*:*:*:*:*:*:*:*"], "vendor": "rockwellautomation", "product": "thinmanager_thinserver", "versions": [{"status": "affected", "version": "11.0.0 - 11.2.6"}, {"status": "affected", "version": "11.1.0 - 11.1.6"}, {"status": "affected", "version": "11.2.0 - 11.2.7"}, {"status": "affected", "version": "12.0.0 - 12.0.5"}, {"status": "affected", "version": "12.1.0 - 12.1.6"}, {"status": "affected", "version": "13.0.0 - 13.0.2"}, {"status": "affected", "version": "13.1.0"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-08T17:08:02.633Z"}}], "cna": {"title": "Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerabilitiy", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "This vulnerability was reported to Rockwell Automation by Tenable Network Security."}], "impacts": [{"capecId": "CAPEC-126", "descriptions": [{"lang": "en", "value": "CAPEC-126 Path Traversal"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Rockwell Automation", "product": "ThinManager ThinServer", "versions": [{"status": "affected", "version": "11.0.0 - 11.2.6"}, {"status": "affected", "version": "11.1.0 - 11.1.6"}, {"status": "affected", "version": "11.2.0 - 11.2.7"}, {"status": "affected", "version": "12.0.0 - 12.0.5"}, {"status": "affected", "version": "12.1.0 - 12.1.6"}, {"status": "affected", "version": "13.0.0 - 13.0.2"}, {"status": "affected", "version": "13.1.0"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "\n * Update to the corrected software versions.\n * Limit remote access for TCP Port 2031 to known thin clients and ThinManager servers.\n\n\n", "supportingMedia": [{"type": "text/html", "value": "\n\n<ul><li>Update to the corrected software versions.</li><li>Limit remote access for TCP Port 2031 to known thin clients and ThinManager servers.</li></ul>", "base64": false}]}], "datePublic": "2023-08-17T14:00:00.000Z", "references": [{"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140471"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, an integer overflow condition exists in the affected products. When the ThinManager processes incoming messages, a read access violation occurs and terminates the process. A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and causing a denial of service condition in the software. ", "supportingMedia": [{"type": "text/html", "value": "The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, an integer overflow condition exists in the affected products. When the ThinManager processes incoming messages, a read access violation occurs and terminates the process. A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and causing a denial of service condition in the software. ", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-20", "description": "CWE-20 Improper Input Validation"}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2023-08-17T15:03:27.110Z"}}}, "cveMetadata": {"cveId": "CVE-2023-2914", "state": "PUBLISHED", "dateUpdated": "2024-10-08T17:08:30.894Z", "dateReserved": "2023-05-26T13:23:41.377Z", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "datePublished": "2023-08-17T15:01:25.994Z", "assignerShortName": "Rockwell"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rockwellautomation:thinmanager_thinserver:*:*:*:*:*:*:*:*", "matchCriteriaId": "6C40EF89-902D-40A0-9460-9C2037CDAF45", "versionEndIncluding": "11.0.6", "versionStartIncluding": "11.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:rockwellautomation:thinmanager_thinserver:*:*:*:*:*:*:*:*", "matchCriteriaId": "DCB9F021-2307-4183-A6B8-CAEE88808C92", "versionEndIncluding": "11.1.6", "versionStartIncluding": "11.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:rockwellautomation:thinmanager_thinserver:*:*:*:*:*:*:*:*", "matchCriteriaId": "A8C2E2BF-3ABA-4E69-9A8F-4E2AC6C48E2E", "versionEndIncluding": "11.2.7", "versionStartIncluding": "11.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:rockwellautomation:thinmanager_thinserver:*:*:*:*:*:*:*:*", "matchCriteriaId": "66054D47-416A-4194-9B95-AE810924AD94", "versionEndIncluding": "12.0.5", "versionStartIncluding": "12.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:rockwellautomation:thinmanager_thinserver:*:*:*:*:*:*:*:*", "matchCriteriaId": "3AAE89B3-6C25-4DE7-898A-2F8637122B01", "versionEndIncluding": "12.1.6", "versionStartIncluding": "12.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:rockwellautomation:thinmanager_thinserver:*:*:*:*:*:*:*:*", "matchCriteriaId": "A5D9F5DA-D66A-4F88-A1C4-E1411715162F", "versionEndIncluding": "13.0.2", "versionStartIncluding": "13.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:rockwellautomation:thinmanager_thinserver:13.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "DE7FC8D4-F5EF-45DC-9D95-4CFBC3FE1E3B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation vulnerability, an integer overflow condition exists in the affected products. When the ThinManager processes incoming messages, a read access violation occurs and terminates the process. A malicious user could exploit this vulnerability by sending a crafted synchronization protocol message and causing a denial of service condition in the software. "}], "id": "CVE-2023-2914", "lastModified": "2024-11-21T07:59:33.587", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "PSIRT@rockwellautomation.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-08-17T16:15:09.513", "references": [{"source": "PSIRT@rockwellautomation.com", "tags": ["Permissions Required"], "url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140471"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Permissions Required"], "url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140471"}], "sourceIdentifier": "PSIRT@rockwellautomation.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "PSIRT@rockwellautomation.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-190"}], "source": "nvd@nist.gov", "type": "Primary"}]}