🔐 CVE Alert

CVE-2026-11917

UNKNOWN 0.0

ThinManager® - Path Traversal via API

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

A path traversal security issue exists within Rockwell Automation ThinManager® software due to improper limitation of file save operations within the API. An authenticated attacker could exploit this vulnerability to write arbitrary files to restricted system directories outside of the application's intended directory.

CWE CWE-22
Vendor rockwell automation
Product factorytalk thinmanager
Published Jul 14, 2026
Last Updated Jul 14, 2026
Stay Ahead of the Next One

Get instant alerts for rockwell automation factorytalk thinmanager

Be the first to know when new unknown vulnerabilities affecting rockwell automation factorytalk thinmanager are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Rockwell Automation / FactoryTalk ThinManager
13.0.0 – 13.0.7, 13.1.0 – 13.1.5, 13.2.0 – 13.2.4, 14.0.0 – 14.0.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗
rockwellautomation.com: https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1782.html