CVE-2022-25250

Name of the Vulnerable Software and Affected Versions Axeda agent (All versions) Axeda Desktop Server for Windows (All versions)

Description The issue is related to a lack of authentication for a critical function, allowing a remote unauthenticated attacker to send a certain command to a specific port. This could enable the attacker to shut down a specific service. The estimated number of potentially affected devices worldwide is not available.

Recommendations For Axeda agent (All versions), consider restricting access to the critical function to minimize the risk of exploitation. For Axeda Desktop Server for Windows (All versions), avoid using the vulnerable function until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.