You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
thinmanager
About this tag
ThinManager is Rockwell Automation's platform for centralized management of thin clients and session-based environments in industrial automation. Recent discussions on WindowsForum highlight critical security vulnerabilities affecting ThinManager, including CVE-2025-9065, a high-severity SSRF flaw that can expose NTLM credentials, and CVE-2025-3617 and CVE-2025-3618. These vulnerabilities impact versions 13.x and 14.0, with patches available in v14.1. Topics cover OT security best practices, remediation steps, and the broader implications for industrial control systems. The tag focuses on vulnerability disclosures, patching strategies, and securing industrial infrastructure against authenticated attacks.
Rockwell Automation’s ThinManager has been flagged for a high-severity Server-Side Request Forgery (SSRF) flaw that can expose an industrial control system’s ThinServer service account NTLM credentials, according to a federal advisory reissued on September 9, 2025. The vulnerability—tracked...
Rockwell Automation's ThinManager platform has long been regarded as a robust solution in the realm of industrial automation, providing centralized management of thin clients and session-based environments for critical manufacturing infrastructure worldwide. Yet, the discovery of two significant...