Critical Vulnerabilities Found in Rockwell Automation FactoryTalk ThinManager
Rockwell Automation recently disclosed critical vulnerabilities in their FactoryTalk ThinManager product, which could have serious implications for industrial automation systems.
Two main vulnerabilities have been identified, each with a distinct potential impact:
- CVE-2024-10386: This vulnerability pertains to missing authentication for a critical function, potentially allowing threat actors with network access to craft specific messages that could manipulate the database of the affected systems. Rockwell describes this as a “Missing Authentication for Critical Function,” leading to a CVSS score of 9.3, classifying it as a severe threat.
- CVE-2024-10387: A Denial-of-Service (DoS) vulnerability, which could permit attackers to disrupt normal operations by sending crafted messages to the device, thereby exhausting resources. This vulnerability, with a CVSS score of 8.7, underscores the need for heightened defenses to mitigate service disruptions.
The vulnerabilities impact versions ranging from 11.2.0 to 14.0.0. Rockwell has released updates for each affected version, and the advisory strongly encourages users to download the corrected versions available on the ThinManager website.
These vulnerabilities were discovered and reported to Rockwell Automation by security researchers at Tenable Network Security.
For those unable to immediately update, Rockwell recommends a series of risk mitigation strategies, emphasizing network hardening by limiting communication ports to essential devices only. “Customers using the affected software are encouraged to apply these risk mitigations,” Rockwell states in its advisory. Additionally, users are urged to implement security best practices to further minimize risk.
Related Posts:
- Rockwell Automation Claims Cisco IOS Vulnerability Affects Its Industrial Switch
- Rockwell Automation Products Face Critical Security Risks, Urgent Patching Required
- CVE-2024-7988 (CVSS 9.8): Rockwell Automation’s ThinManager Flaw Allows RCE
- Critical Vulnerabilities Uncovered in Rockwell Automation’s ThinManager: Immediate Action Required
- CVE-2024-21915 (CVSS 9.0): Rockwell Automation Patches Critical Flaw in FTSP
