ID
VAR-202509-0772
CVE
CVE-2025-9065
TITLE
Rockwell Automation ThinManager Server Request Forgery Vulnerability
Trust: 0.6
DESCRIPTION
A server-side request forgery security issue exists within Rockwell Automation ThinManager® software due to the lack of input sanitization. Authenticated attackers can exploit this vulnerability by specifying external SMB paths, exposing the ThinServer® service account NTLM hash. Rockwell Automation ThinManager is thin client management software from Rockwell Automation. It allows thin clients to be assigned to multiple remote desktop servers simultaneously. An attacker can exploit this vulnerability to forge server-side requests
Trust: 1.44
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | rockwell | model: | automation thinmanager | scope: | gte | version: | 13.0,<=14.0 | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-610 | Trust: 1.0 |
PATCH
| title: | Patch for Rockwell Automation ThinManager Server Request Forgery Vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/731231 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2025-9065 | Trust: 1.6 |
| db: | CNVD | id: | CNVD-2025-21158 | Trust: 0.6 |
REFERENCES
| url: | https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.sd1743.html | Trust: 1.0 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2025-9065 | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2025-21158 |
| db: | NVD | id: | CVE-2025-9065 |
LAST UPDATE DATE
2025-10-17T23:01:36.543000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2025-21158 | date: | 2025-09-12T00:00:00 |
| db: | NVD | id: | CVE-2025-9065 | date: | 2025-09-09T16:28:43.660 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2025-21158 | date: | 2025-09-12T00:00:00 |
| db: | NVD | id: | CVE-2025-9065 | date: | 2025-09-09T13:15:32.493 |