ZDI-26-058 HIGH 7.8 Published Feb 03, 2026

AzeoTech DAQFactory Pro CTL File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

AzeoTech

A remote code execution vulnerability (CVE-2025-66589) has been discovered in AzeoTech DAQFactory that allows attackers to execute arbitrary code on affected systems with a CVSS score of 7.8. The attack requires user interaction, such as opening a malicious file or visiting a malicious webpage. Security teams should prioritize patching AzeoTech DAQFactory installations and educate users to avoid opening untrusted files or clicking suspicious links.

Related CVE

CVE-2025-66589

Tags

RCE Memory Corruption Industrial Scada Remote Code Execution

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy