Vulnerability Details CVE-2022-25251
When connecting to a certain port Axeda agent (All versions) and Axeda Desktop Server for Windows (All versions) may allow an attacker to send certain XML messages to a specific port without proper authentication. Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to read and modify the affected product’s configuration.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2022-25251
-
cpe:2.3:a:ptc:axeda_agent:-
-
cpe:2.3:a:ptc:axeda_agent:6.9.0
-
cpe:2.3:a:ptc:axeda_desktop_server:-