All versions of PTC’s Axeda agent and desktop server are affected by the Access:7 cyber vulnerabilities, according to the FDA’s alert to device users and manufacturers. The FDA warned that “successful exploitation of these vulnerabilities could result in full system access, remote code execution, read/change configuration, file system read access, log information access, and a denial-of-service condition.”
PTC in its public advisory said the vulnerabilities were discovered by research firm CyberMDX and reported through PTC’s Coordinated Vulnerability Disclosure Program. Working together, the two companies investigated and implemented fixes for the vulnerabilities and then PTC “notified customers and guided their remediations ahead of disclosure.”
