CVE-2024-5989 Information

Description

Due to an improper input validation an unauthenticated threat actor can send a malicious message to invoke SQL injection into the program and cause a remote code execution condition on the Rockwell Automation ThinManager® ThinServer™.

Reference

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1677.html