When connecting to a certain port Axeda agent (All versions) and Axeda Desktop Server for Windows (All versions) when receiving certain input throws an exception. Services using said function do not handle the exception. Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to crash the affected product.
References
Link | Resource |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-22-067-01 | Mitigation Third Party Advisory US Government Resource |
https://www.ptc.com/en/support/article/CS363561 | Vendor Advisory |
https://www.cisa.gov/uscert/ics/advisories/icsa-22-067-01 | Mitigation Third Party Advisory US Government Resource |
https://www.ptc.com/en/support/article/CS363561 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 06:51
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.cisa.gov/uscert/ics/advisories/icsa-22-067-01 - Mitigation, Third Party Advisory, US Government Resource | |
References | () https://www.ptc.com/en/support/article/CS363561 - Vendor Advisory |
28 Mar 2022, 13:32
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-754 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CPE | cpe:2.3:a:ptc:axeda_agent:*:*:*:*:*:*:*:* cpe:2.3:a:ptc:axeda_desktop_server:*:*:*:*:*:windows:*:* |
|
References | (MISC) https://www.ptc.com/en/support/article/CS363561 - Vendor Advisory | |
References | (MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-22-067-01 - Mitigation, Third Party Advisory, US Government Resource |
16 Mar 2022, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-16 15:15
Updated : 2024-11-21 06:51
NVD link : CVE-2022-25252
Mitre link : CVE-2022-25252
CVE.ORG link : CVE-2022-25252
JSON object : View
Products Affected
ptc
- axeda_desktop_server
- axeda_agent