← Voltar para CVEs
CVE-2025-66590
CRITICAL9.8
Descricao
In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Write vulnerability can be exploited by an attacker to cause the program to write data past the end of an allocated memory buffer. This can lead to arbitrary code execution or a system crash.
Detalhes CVE
Pontuacao CVSS v3.19.8
SeveridadeCRITICAL
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado12/11/2025
Ultima modificacao1/2/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
azeotech:daqfactory
Fraquezas (CWE)
CWE-787
Referencias
https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03(ics-cert@hq.dhs.gov)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.