CVE-2022-25252

Name of the Vulnerable Software and Affected Versions PTC Axeda Axeda agent versions All PTC Axeda Axeda Desktop Server for Windows versions All

Description The issue is related to incorrect exception handling in the xBase39 module of the PTC Axeda platform. This can be exploited by a remote attacker to cause a denial of service. When the Axeda agent or Axeda Desktop Server for Windows receives certain input on a specific port, it throws an exception that is not properly handled by services using the affected function, leading to a crash of the product.

Recommendations For PTC Axeda Axeda agent versions All, consider restricting access to the specific port that triggers the exception to minimize the risk of exploitation. For PTC Axeda Axeda Desktop Server for Windows versions All, avoid using the function that throws the exception until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.