{ "document" : { "aggregate_severity" : { "text" : "hoch" }, "category" : "csaf_base", "csaf_version" : "2.0", "distribution" : { "tlp" : { "label" : "WHITE", "url" : "https://www.first.org/tlp/" } }, "lang" : "de-DE", "notes" : [ { "category" : "legal_disclaimer", "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen." }, { "category" : "description", "text" : "FactoryTalk ist eine Software für die industrielle Automatisierung, die zur Maximierung der Effizienz und Steigerung der Anlagenproduktivität entwickelt wurde.", "title" : "Produktbeschreibung" }, { "category" : "summary", "text" : "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Rockwell Automation FactoryTalk ThinManager ausnutzen, um Dateien zu manipulieren oder einen Denial of Service zu verursachen.", "title" : "Angriff" }, { "category" : "general", "text" : "- Windows", "title" : "Betroffene Betriebssysteme" } ], "publisher" : { "category" : "other", "contact_details" : "csaf-provider@cert-bund.de", "name" : "Bundesamt für Sicherheit in der Informationstechnik", "namespace" : "https://www.bsi.bund.de" }, "references" : [ { "category" : "self", "summary" : "WID-SEC-W-2024-3322 - CSAF Version", "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3322.json" }, { "category" : "self", "summary" : "WID-SEC-2024-3322 - Portal Version", "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3322" }, { "category" : "external", "summary" : "ICS Advisory vom 2024-10-31", "url" : "https://www.cisa.gov/news-events/ics-advisories/icsa-24-305-01" } ], "source_lang" : "en-US", "title" : "Rockwell Automation FactoryTalk ThinManager: Mehrere Schwachstellen", "tracking" : { "current_release_date" : "2024-10-31T23:00:00.000+00:00", "generator" : { "date" : "2024-11-01T10:10:55.054+00:00", "engine" : { "name" : "BSI-WID", "version" : "1.3.8" } }, "id" : "WID-SEC-W-2024-3322", "initial_release_date" : "2024-10-31T23:00:00.000+00:00", "revision_history" : [ { "date" : "2024-10-31T23:00:00.000+00:00", "number" : "1", "summary" : "Initiale Fassung" } ], "status" : "final", "version" : "1" } }, "product_tree" : { "branches" : [ { "branches" : [ { "branches" : [ { "category" : "product_version", "name" : "ThinManager 11.2.0 to 11.2.9", "product" : { "name" : "Rockwell Automation FactoryTalk ThinManager 11.2.0 to 11.2.9", "product_id" : "T038723", "product_identification_helper" : { "cpe" : "cpe:/a:rockwellautomation:factorytalk:thinmanager_11.2.0_to_11.2.9" } } }, { "category" : "product_version", "name" : "ThinManager 12.0.0 to 12.0.7", "product" : { "name" : "Rockwell Automation FactoryTalk ThinManager 12.0.0 to 12.0.7", "product_id" : "T038724", "product_identification_helper" : { "cpe" : "cpe:/a:rockwellautomation:factorytalk:thinmanager_12.0.0_to_12.0.7" } } }, { "category" : "product_version", "name" : "ThinManager 12.1.0 to 12.1.8", "product" : { "name" : "Rockwell Automation FactoryTalk ThinManager 12.1.0 to 12.1.8", "product_id" : "T038725", "product_identification_helper" : { "cpe" : "cpe:/a:rockwellautomation:factorytalk:thinmanager_12.1.0_to_12.1.8" } } }, { "category" : "product_version", "name" : "ThinManager 13.0.0 to 13.0.5", "product" : { "name" : "Rockwell Automation FactoryTalk ThinManager 13.0.0 to 13.0.5", "product_id" : "T038726", "product_identification_helper" : { "cpe" : "cpe:/a:rockwellautomation:factorytalk:thinmanager_13.0.0_to_13.0.5" } } }, { "category" : "product_version", "name" : "ThinManager 13.1.0 to 13.1.3", "product" : { "name" : "Rockwell Automation FactoryTalk ThinManager 13.1.0 to 13.1.3", "product_id" : "T038727", "product_identification_helper" : { "cpe" : "cpe:/a:rockwellautomation:factorytalk:thinmanager_13.1.0_to_13.1.3" } } }, { "category" : "product_version", "name" : "ThinManager 13.2.0 to 13.2.2", "product" : { "name" : "Rockwell Automation FactoryTalk ThinManager 13.2.0 to 13.2.2", "product_id" : "T038728", "product_identification_helper" : { "cpe" : "cpe:/a:rockwellautomation:factorytalk:thinmanager_13.2.0_to_13.2.2" } } }, { "category" : "product_version", "name" : "ThinManager 14.0.0", "product" : { "name" : "Rockwell Automation FactoryTalk ThinManager 14.0.0", "product_id" : "T038729", "product_identification_helper" : { "cpe" : "cpe:/a:rockwellautomation:factorytalk:thinmanager_14.0.0" } } } ], "category" : "product_name", "name" : "FactoryTalk" } ], "category" : "vendor", "name" : "Rockwell Automation" } ] }, "vulnerabilities" : [ { "cve" : "CVE-2024-10386", "notes" : [ { "category" : "description", "text" : "Es existiert eine Schwachstelle in Rockwell Automation FactoryTalk ThinManager. Die Ursache ist ein Problem bei der Authentifizierung. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um manipulierte Nachrichten an das Gerät zu senden, was zu einer Manipulation der Datenbank führen kann." } ], "product_status" : { "known_affected" : [ "T038729", "T038728", "T038725", "T038724", "T038727", "T038726", "T038723" ] }, "release_date" : "2024-10-31T23:00:00.000+00:00", "title" : "CVE-2024-10386" }, { "cve" : "CVE-2024-10387", "notes" : [ { "category" : "description", "text" : "Es existiert eine Schwachstelle in Rockwell Automation FactoryTalk ThinManager. Diese besteht aufgrund eines out-of-bounds read Problems. Ein entfernter, anonymer Angreifer kann manipulierte Nachrichten an das Gerät senden, was zu einem Denial-of-Service-Zustand führt." } ], "product_status" : { "known_affected" : [ "T038729", "T038728", "T038725", "T038724", "T038727", "T038726", "T038723" ] }, "release_date" : "2024-10-31T23:00:00.000+00:00", "title" : "CVE-2024-10387" } ] }