Vulnerability Details CVE-2022-25249
When connecting to a certain port Axeda agent (All versions) and Axeda Desktop Server for Windows (All versions) (disregarding Axeda agent v6.9.2 and v6.9.3) is vulnerable to directory traversal, which could allow a remote unauthenticated attacker to obtain file system read access via web server..
Exploit prediction scoring system (EPSS) score
EPSS Score 0.018
EPSS Ranking 81.8%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2022-25249
-
cpe:2.3:a:ptc:axeda_agent:-
-
cpe:2.3:a:ptc:axeda_agent:6.9.0
-
cpe:2.3:a:ptc:axeda_desktop_server:-