CISA Releases Security Advisory on PTC Axeda Agent and Desktop Server

03/08/2022 09:18 AM EST

Original release date: March 8, 2022

CISA has released an Industrial Controls Systems Advisory (ICSA), detailing vulnerabilities in PTC Axeda agent and Axeda Desktop Server. Successful exploitation of these vulnerabilities—collectively known as “Access:7”—could result in full system access, remote code execution, read/change configuration, file system read access, log information access, or a denial-of-service condition.

CISA encourages users and administrators to review ICS Advisory ICSA-22-067-01 PTC Axeda Agent and Axeda Desktop Server for technical details and mitigations and the Food and Drug Administration statement for additional information.

This product is provided subject to this Notification and this Privacy & Use policy.

McAfee Releases Security Update for McAfee Agent for Windows 

01/21/2022 01:32 PM EST

Original release date: January 21, 2022

McAfee has released McAfee Agent for Windows version 5.7.5, which addresses vulnerabilities CVE-2021-31854 and CVE-2022-0166. An attacker could exploit these vulnerabilities to take control of an affected system.

CISA encourages users and administrators to review McAfee Security Bulletin SB10378 and apply the necessary update. CISA also encourages users and administrators to review the CERT Coordination Center Vulnerability Note VU#287178 for more information.

This product is provided subject to this Notification and this Privacy & Use policy.