CVE-2025-3617

EPSS 0.05%
Veröffentlicht 15.04.2025 17:17:25
Zuletzt bearbeitet 14.07.2025 19:16:28
Quelle PSIRT@rockwellautomation.com
CVE-Watchlists
Login
Unerledigt
Login

Local Privilege Escalation in ThinManager®

A privilege escalation vulnerability exists in the Rockwell Automation ThinManager. When the software starts up, files are deleted in the temporary folder causing the Access Control Entry of the directory to inherit permissions from the parent directory. If exploited, a threat actor could inherit elevated privileges.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Rockwellautomation ≫ Thinmanager Version >= 14.0.0 < 14.0.2

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.14

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
PSIRT@rockwellautomation.com	8.5	0	0	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-276 Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1727.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-3617

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-3617

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-3617

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-3617