First published: Tue Apr 15 2025(Updated: )
A privilege escalation vulnerability exists in the Rockwell Automation ThinManager. When the software starts up, files are deleted in the temporary folder causing the Access Control Entry of the directory to inherit permissions from the parent directory. If exploited, a threat actor could inherit elevated privileges.
Credit: PSIRT@rockwellautomation.com
Affected Software | Affected Version | How to fix |
---|---|---|
Rockwell Automation ThinManager ThinServer |
Corrected in v14.0.2 and later.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-3617 is classified as a privilege escalation vulnerability.
To mitigate CVE-2025-3617, ensure that you apply the latest security patches and configurations provided by Rockwell Automation.
CVE-2025-3617 affects all versions of Rockwell Automation ThinManager that are vulnerable to this specific privilege escalation issue.
CVE-2025-3617 is a privilege escalation vulnerability, allowing unauthorized access to the system.
CVE-2025-3617 requires local access to exploit, but could potentially be leveraged by authenticated users with limited privileges.