Exploit for #VU80035 Path traversal in ThinManager and ThinServer

Published: 2025-06-05

Vulnerability identifier: #VU80035

Vulnerability risk: High

CVSSv4.0: 9.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2023-2917

CWE-ID: CWE-22

Exploitation vector: Network

Exploits in database: 1

June 5, 2025
- ThinManager Path Traversal (CVE-2023-2917) Arbitrary File Upload [Metasploit]

Vulnerable software:
ThinManager
Server applications / Other server solutions
ThinServer
Server applications / Other server solutions

Vendor: Rockwell Automation