AzeoTech DAQFactory CTL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of AzeoTech DAQFactory. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

AzeoTech DAQFactory CTL File Parsing Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of AzeoTech DAQFactory. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

AzeoTech DAQFactory Stack Buffer Overflow Vulnerability

AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, Inc. and commonly used in industrial automation. AzeoTech DAQFactory suffers from a stack buffer overflow vulnerability that originates from a stack buffer overflow when parsing a specially crafted .ctl file,...

CVE-2025-66584

In AzeoTech DAQFactory release 20.7 Build 2555, a Stack-Based Buffer Overflow vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

CVE-2025-66587

In AzeoTech DAQFactory release 20.7 Build 2555, the affected application is vulnerable to memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

CVE-2025-66584

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2025-66587

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2025-66585

In AzeoTech DAQFactory release 20.7 Build 2555, a Use After Free vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

CVE-2025-66585

In AzeoTech DAQFactory release 20.7 Build 2555, a Use After Free vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

CVE-2025-66584

CVE-2025-66584 entry is rejected by its CVE Numbering Authority.

EUVD-2025-202854

In AzeoTech DAQFactory release 20.7 Build 2555, a Stack-Based Buffer Overflow vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

CVE-2025-66585 Use After Free vulnerability in AzeoTech DAQFactory

In AzeoTech DAQFactory release 20.7 Build 2555, a Use After Free vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

CVE-2025-66585

CVE-2025-66585 affects AzeoTech DAQFactory release 20.7 (Build 2555). A Use-After-Free vulnerability during parsing of specially crafted .ctl files can cause memory corruption and may allow code execution in the current process. Vendor/ICS advisories confirm local attack Vector with high impact t...

EUVD-2025-202857

In AzeoTech DAQFactory release 20.7 Build 2555, a Use After Free vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

CVE-2025-66585 Use After Free vulnerability in AzeoTech DAQFactory

In AzeoTech DAQFactory release 20.7 Build 2555, a Use After Free vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

EUVD-2025-202859

In AzeoTech DAQFactory release 20.7 Build 2555, an Access of Resource Using Incompatible Type vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

CVE-2025-66586 Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in AzeoTech DAQFactory

In AzeoTech DAQFactory release 20.7 Build 2555, an Access of Resource Using Incompatible Type vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process...

CVE-2025-66587

...

PT-2025-50737

Name of the Vulnerable Software and Affected Versions AzeoTech DAQFactory version 20.7 Build 2555 Description AzeoTech DAQFactory release 20.7 Build 2555 contains a flaw related to improper handling of resources. Specifically, an Access of Resource Using Incompatible Type issue exists when...

PT-2025-50735

Name of the Vulnerable Software and Affected Versions AzeoTech DAQFactory version 20.7 Build 2555 Description A stack-based buffer overflow exists in AzeoTech DAQFactory release 20.7 Build 2555. This issue can be triggered by processing specially crafted .ctl files, leading to memory corruption...