Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

ATMs, Medical and IoT Devices get affected by Supply Chain vulnerabilities


By MYBRANDBOOK


ATMs, Medical and IoT Devices get affected by Supply Chain vulnerabilities

Seven security vulnerabilities have been disclosed in PTC's Axeda software that could be weaponized to gain unauthorized access to medical and IoT devices.

 

Collectively called "Access:7," the weaknesses – three of which are rated Critical in severity – potentially affect more than 150 device models spanning over 100 different manufacturers, posing a significant supply chain risk.

 

Besides medical imaging and laboratory machines, vulnerable devices include everything from ATMs, vending machines, cash management systems, and label printers to barcode scanning systems, SCADA systems, asset monitoring and tracking solutions, IoT gateways, and industrial cutters.

 

Of the 100 impacted device vendors, 55% belong to the healthcare sector, followed by IoT (24%), IT (8%), financial services (5%), and manufacturing (4%) industries. No less than 54% of the customers with devices running Axeda have been identified in the healthcare sector.

 

The flaws, which affect all versions of the Axeda Agent prior to 6.9.3, were reported as part of a coordinated disclosure process that involved the U.S. Cybersecurity and Infrastructure Security Agency (CISA), Health Information Sharing and Analysis Center (H-ISAC), and the Food and Drug Administration (FDA).

 

Listed below are the seven flaws discovered:

· CVE-2022-25246 – The use of hard-coded credentials in the AxedaDesktopServer.exe service that could enable remote takeover of a device

· CVE-2022-25247 – A flaw in ERemoteServer.exe that could be leveraged to send specially crafted commands to obtain Remote code execution (RCE) and full file system access

· CVE-2022-25251 – Missing authentication in the Axeda xGate.exe agent that could be used to modify the agent's configuration

· CVE-2022-25249 – A directory traversal flaw in the Axeda xGate.exe agent which could allow a remote unauthenticated attacker to obtain file system read access on the web server

· CVE-2022-25250 – A denial-of-service (DoS) flaw in the Axeda xGate.exe agent by injecting an undocumented command

· CVE-2022-25252 – A buffer overflow vulnerability in the Axeda xBase39.dll component that could result in a DoS

· CVE-2022-25248 – An information disclosure flaw in the ERemoteServer.exe service that exposes the live event text log to unauthenticated parties
 BREAKING NEWS  BREAKING NEWS
With eyes on IPO, Flipkart plans to move domicile from Singapore

With eyes on IPO, Flipkart plans to move domicile from Singapore ...

Walmart-owned Flipkart is reportedly planning to move its domicile back f...

Sony names two executives as CEO of its Playstation unit

Sony names two executives as CEO of its Playstation unit...

Sony has announced that two veteran executives will take over as CEOs of i...

Permanent deletion of transactions can make e-rupee anonymous, RB

Permanent deletion of transactions can make e-rupee anonymous, RB...

The Governor of Reserve Bank of India (RBI) stated that the permanent del...

Zscaler unveils Digital Experience Monitoring Copilot

Zscaler unveils Digital Experience Monitoring Copilot...

Zscaler has announced groundbreaking innovations - ZDX Copilot, Hosted Mon...

 TECHNO TRENDS  Placeholder image
The government of India intends to construct a single portal f

The government of India intends to construct a single portal f

A single portal will be launched by the Indian government to list all of it...

OpenAI offers GPT-4o, a faster model available to all users at

OpenAI offers GPT-4o, a faster model available to all users at

GPT-4o, a faster and more sophisticated AI model, is made available to all...

Paytm brings UPI Lite Wallet for low-value transactions

Paytm brings UPI Lite Wallet for low-value transactions

Paytm’s parent company One97 Communications (OCL) is emphasizing upon UP...

BHIM to join e-commerce, competing with PhonePe and Google Pay

BHIM to join e-commerce, competing with PhonePe and Google Pay

The government-supported payment software BHIM is getting ready to join t...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
S.S. Rajamouli and Disney+ Hotstar brings the untold story of

S.S. Rajamouli and Disney+ Hotstar brings the untold story of

Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

Bharti Airtel (“Airtel”), one of India’s leading telecommunications

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
 MOVERS & SHAKERS  Placeholder image
New Relic names Katrina Wong as CMO

New Relic names Katrina Wong as CMO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech has announced the appointment of Subham Banerjee as its Ch
Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

The cloud-native identity and governance platform solutions provider Saviy
 OPEN YOUR EYES  Placeholder image

Building of a secure infrastructure is highly essential to stop malicious activity
Can we could visualise a new world post COVID -19
Modernize the IT Strategy To Navigate COVID-19 and Beyond
Growing cyberattacks is a raising concern ,it’s time to evaluate cloud-first strategy
Digital banking brings revolution during COVID-19
 INTERVIEWS  Placeholder image
Commvault leading the next generation of data protection throu

Commvault leading the next generation of data protection throu

Forcepoint positions itself as a trusted protector of sensitiv

Forcepoint positions itself as a trusted protector of sensitiv

To help SMEs and SMBs use the SASE/SSE framework and scale both in terms of
Acer continues to solidify itself as a leading player in the I

Acer continues to solidify itself as a leading player in the I

Acer, as a key player in the constantly evolving and vibrant ICT industry,

 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
DRUVA SOFTWARE PVT. LTD.

DRUVA SOFTWARE PVT. LTD.


NUMERIC INDIA, A Group Brand Legrand

NUMERIC INDIA, A Group Brand Legrand


TAC SECURITY SOLUTIONS 

TAC SECURITY SOLUTIONS 


WIPRO LTD.  

WIPRO LTD.  


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

Digitalization and digitization: The only way to move forward for Enterprises

While we end up deploying multiple tools and defin...

Taking a holistic view of digital change efforts for attaining business objectives

One of the most important guiding principles that ...

Implementation of new technologies & automation greatly improving the productivity 

Automation allows customer service representatives...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: B.V.R. Subrahmanyam

B.V.R. Subrahmanyam belongs to Andhra Pradesh. He is a 1987-batch IAS ...

Technology Icons Of India 2023: Shailendra Katyal

Shailendra is instrumental in Lenovo achieving the no.1 position in PC...

Technology Icons Of India 2023: Bharat Goenka

Bharat Goenka is the Managing Director of Tally Solutions. He is well ...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Arrow PC Network Empowering Businesses with Visionary Technology Solutions for a Brighter Future

Being in the IT Sector for more than 30 years, the Founder & MD of Arrow PC Ne...

Symmetrix Empowering Collaboration between OEMs, Customers, and SMEs for Seamless Project Execution and Growth

A robust support system exists that fosters seamless communication and collabo...

RAH infotech bolstering its position as a leading VAD with its commitment to excellence

The future of the IT industry in India is promising, with several trends and f...

 PSU  Placeholder image

STPI encouraging software exports from India  

Software Technology Parks of India (STPI) is an S&T organization under...

CSCs enabling rural India digitally empowered  

Common service centres (CSCs) are digital access points under the Digi...

CERT-IN protecting the cyber security space of India

CERT-In serves in the area of cyber security threats like hacking and ...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : AMD India Pvt. Ltd.

Ushering in the exascale era, AMD powers the world’s most powerful supercomp...

Most Trusted Brands 2023 : Amazon Web Services (AWS)  

As the world’s most comprehensive and broadly adopted cloud, AWS offers over...

Most Trusted Brands 2023 : LTImindtree

LTIMindtree is a global technology consulting and digital solutions company t...

 Value-Added Distribution  Value-Added Distribution

IVALUE INFOSOLUTIONS PVT. LTD.

: iValue Info Solutions is a value added distributor, provides solutio...

TECH DATA, A TD SYNNEX COMPANY

Tech Data Corporation was an American multinational distribution compa...

FORTUNE MARKETING PVT. LTD.

Delhi based Fortune Marketing, An ISO 9001:2008 company, distributes ...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

Headcount downsizes attributed largely due to increased automation

Headcount downsizes attributed largely due to increased automation

Microsoft to help Air India accelerate its digital transformation journey

Microsoft to help Air India accelerate its digital transformation journey

Sinch MessageMedia Announces Increased Capabilities of its HubSpot SMS & MMS Integration

Sinch MessageMedia Announces Increased Capabilities of its HubSpot SMS & MMS Integration

Zoom bolsters partner program with new enhancements

Zoom bolsters partner program with new enhancements

 UNICORNS REVOLUTIONISING Placeholder image

Builder.ai

Builder.ai

Mensa Brand Technologies Private Limited

Mensa Brand Technologies Private Limited

Info Edge (India) Limited

Info Edge (India) Limited

Nextbillion Technology Private Limited

Nextbillion Technology Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW