Lucene search
K

5 matches found

CVE
CVE
added 2025/12/11 8:48 p.m.17 views

CVE-2025-66589

CVE-2025-66589 affects AzeoTech DAQFactory 20.7 (Build 2555). The vulnerability is an out-of-bounds read in the DAQFactory runtime that can cause reading past the end of an allocated buffer, potentially leading to information disclosure or a crash. Public sources in the provided documents consist...

9.1CVSS6.1AI score0.00298EPSS
CVE
CVE
added 2025/12/11 8:45 p.m.16 views

CVE-2025-66590

In DAQFactory release 20.7 (Build 2555) from AzeoTech, CVE-2025-66590 is described as an out-of-bounds write vulnerability that can cause writes past a memory buffer, potentially enabling arbitrary code execution or a system crash. Connected sources (NVD/Red Hat/ICS-CISA/etc.) corroborate the sam...

9.8CVSS7.6AI score0.00312EPSS
CVE
CVE
added 2025/12/11 8:54 p.m.13 views

CVE-2025-66586

Summary: CVE-2025-66586 affects AzeoTech DAQFactory 20.7 (Build 2555). The CTL file parsing code has a type-confusion vulnerability that can lead to memory corruption and remote code execution in the context of the current process. The ZDI advisories (ZDI-25-1132, -1131, -1133, -1134) describe th...

7.8CVSS7.3AI score0.0018EPSS
CVE
CVE
added 2025/12/11 8:50 p.m.13 views

CVE-2025-66588

In AzeoTech DAQFactory 20.7 (Build 2555), CVE-2025-66588 is an Access of Uninitialized Pointer vulnerability (also described as memory corruption risks such as buffer overflows) that can lead to arbitrary code execution. Multiple sources (NVD entry and CNVD/Red Hat/ICS/CVE records) describe a mem...

9.8CVSS6.1AI score0.00242EPSS
CVE
CVE
added 2025/12/11 8:56 p.m.12 views

CVE-2025-66585

CVE-2025-66585 affects AzeoTech DAQFactory release 20.7 (Build 2555). A Use-After-Free vulnerability during parsing of specially crafted .ctl files can cause memory corruption and may allow code execution in the current process. Vendor/ICS advisories confirm local attack Vector with high impact t...

7.8CVSS7.3AI score0.00193EPSS