Rockwell Automation ThinManager® Server-Side Request Forgery Vulnerability_CVE-2025-9065

8.6 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

A server-side request forgery security issue exists within Rockwell Automation ThinManager® software due to the lack of input sanitization. Authenticated attackers can exploit this vulnerability by specifying external SMB paths, exposing the ThinServer® service account NTLM hash.

Basic Information

ID CVE-2025-9065

Source Rockwell

Published Sep 9, 2025 at 12:51

Modified Sep 9, 2025 at 13:23

Affected Product

Vendor Rockwell Automation

Product ThinManager

Version 13.0 - 14.0

Affected Versions Rockwell Automation ThinManager 13.0 - 14.0

CWE Classification

CWE-610

References

www.rockwellautomation.com /en-us/trust-center/security-advisories/advisory.SD1743.html

{
    "lastseen": "",
    "description": "A server-side request forgery security issue exists within Rockwell Automation ThinManager\u00ae software due to the lack of input sanitization. Authenticated attackers can exploit this vulnerability by specifying external SMB paths, exposing the ThinServer\u00ae service account NTLM hash.",
    "published": "2025-09-09T12:51:42.091Z",
    "modified": "2025-09-09T13:23:24.291Z",
    "type": "cve",
    "title": "Rockwell Automation ThinManager\u00ae Server-Side Request Forgery Vulnerability",
    "source": "Rockwell",
    "references": "https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1743.html",
    "id": "CVE-2025-9065",
    "bulletinFamily": "",
    "cwe": [
        "CWE-610"
    ],
    "cvelist": null,
    "sourceData": "Rockwell Automation ThinManager 13.0 - 14.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ThinManager",
    "version": "13.0 - 14.0",
    "vendor": "Rockwell Automation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}