Rewterz Threat Alert – AZORult Malware – Active IOCs
March 27, 2023Rewterz Threat Update – U.K NCA Sets Up Fake DDoS-For-Hire Sites To Trap Cybercriminals
March 27, 2023Rewterz Threat Alert – AZORult Malware – Active IOCs
March 27, 2023Rewterz Threat Update – U.K NCA Sets Up Fake DDoS-For-Hire Sites To Trap Cybercriminals
March 27, 2023Severity
High
Analysis Summary
CVE-2022-38742
Rockwell Automation ThinManager ThinServer is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the wl binary. By sending a specially-crafted TFPT or HTTPS request, a remote attacker could exploit this vulnerability to execute arbitrary code on the system or cause the ThinServer process to crash.
Impact
- Buffer Overflow
Indicators Of Compromise
CVE
- CVE-2022-38742
Affected Vendors
Rockwell Automation
Affected Products
- Rockwell Automation ThinManager ThinServer 11.00.00
- Rockwell Automation ThinManager ThinServer 13.00.00
Remediation
Refer to CISA-CERT Advisory for patch, upgrade or suggested workaround information.