5 matches found
CVE-2025-66589
CVE-2025-66589 affects AzeoTech DAQFactory 20.7 (Build 2555). The vulnerability is an out-of-bounds read in the DAQFactory runtime that can cause reading past the end of an allocated buffer, potentially leading to information disclosure or a crash. Public sources in the provided documents consist...
CVE-2025-66590
In DAQFactory release 20.7 (Build 2555) from AzeoTech, CVE-2025-66590 is described as an out-of-bounds write vulnerability that can cause writes past a memory buffer, potentially enabling arbitrary code execution or a system crash. Connected sources (NVD/Red Hat/ICS-CISA/etc.) corroborate the sam...
CVE-2025-66586
Summary: CVE-2025-66586 affects AzeoTech DAQFactory 20.7 (Build 2555). The CTL file parsing code has a type-confusion vulnerability that can lead to memory corruption and remote code execution in the context of the current process. The ZDI advisories (ZDI-25-1132, -1131, -1133, -1134) describe th...
CVE-2025-66588
In AzeoTech DAQFactory 20.7 (Build 2555), CVE-2025-66588 is an Access of Uninitialized Pointer vulnerability (also described as memory corruption risks such as buffer overflows) that can lead to arbitrary code execution. Multiple sources (NVD entry and CNVD/Red Hat/ICS/CVE records) describe a mem...
CVE-2025-66585
CVE-2025-66585 affects AzeoTech DAQFactory release 20.7 (Build 2555). A Use-After-Free vulnerability during parsing of specially crafted .ctl files can cause memory corruption and may allow code execution in the current process. Vendor/ICS advisories confirm local attack Vector with high impact t...