Vulnerability-Lookup

VAR-202512-0019

Vulnerability from variot - Updated: 2025-12-20 19:39

In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Read vulnerability can be exploited by an attacker to cause the program to read data past the end of an allocated buffer. This could allow an attacker to disclose information or cause a system crash. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AzeoTech DAQFactory. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of CTL files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, a US-based company, commonly used in industrial automation.

AzeoTech DAQFactory contains an out-of-bounds read vulnerability

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-202512-0019",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "daqfactory",
        "scope": null,
        "trust": 4.2,
        "vendor": "azeotech",
        "version": null
      },
      {
        "model": "daqfactory release (build",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "azeotech",
        "version": "20.72555)"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1156"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Rocco Calvi (@TecR0c) with TecSecurity",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159"
      }
    ],
    "trust": 2.1
  },
  "cve": "CVE-2025-66589",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 3.9,
            "id": "CNVD-2025-30860",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "author": "ZDI",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.8,
            "id": "CVE-2025-66589",
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 4.2,
            "userInteraction": "REQUIRED",
            "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "ZDI",
            "id": "CVE-2025-66589",
            "trust": 4.2,
            "value": "HIGH"
          },
          {
            "author": "ics-cert@hq.dhs.gov",
            "id": "CVE-2025-66589",
            "trust": 1.0,
            "value": "High"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2025-30860",
            "trust": 0.6,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1156"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      },
      {
        "db": "NVD",
        "id": "CVE-2025-66589"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Read vulnerability can be exploited by an attacker to cause the program to read data past the end of an allocated buffer. This could allow an attacker to disclose information or cause a system crash. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AzeoTech DAQFactory. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of CTL files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, a US-based company, commonly used in industrial automation. \n\nAzeoTech DAQFactory contains an out-of-bounds read vulnerability",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2025-66589"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1156"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      }
    ],
    "trust": 5.22
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2025-66589",
        "trust": 5.8
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-25-345-03",
        "trust": 1.6
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-26840",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1161",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-26836",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-26835",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-25521",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1158",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-25511",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1157",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-25510",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1156",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2025-30860",
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1156"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      },
      {
        "db": "NVD",
        "id": "CVE-2025-66589"
      }
    ]
  },
  "id": "VAR-202512-0019",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      }
    ],
    "trust": 1.1573476600000001
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "ICS"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      }
    ]
  },
  "last_update_date": "2025-12-20T19:39:02.534000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "AzeoTech has issued an update to correct this vulnerability.",
        "trust": 4.2,
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1156"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-125",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2025-66589"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 5.8,
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1156"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      },
      {
        "db": "NVD",
        "id": "CVE-2025-66589"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1156"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      },
      {
        "db": "NVD",
        "id": "CVE-2025-66589"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1156"
      },
      {
        "date": "2025-12-17T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      },
      {
        "date": "2025-12-11T21:15:58.073000",
        "db": "NVD",
        "id": "CVE-2025-66589"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "date": "2025-12-19T00:00:00",
        "db": "ZDI",
        "id": "ZDI-25-1156"
      },
      {
        "date": "2025-12-17T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2025-30860"
      },
      {
        "date": "2025-12-12T15:17:31.973000",
        "db": "NVD",
        "id": "CVE-2025-66589"
      }
    ]
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "AzeoTech DAQFactory CTL File Parsing Memory Corruption Remote Code Execution Vulnerability",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-25-1161"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1160"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1159"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1158"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1157"
      },
      {
        "db": "ZDI",
        "id": "ZDI-25-1156"
      }
    ],
    "trust": 4.2
  }
}

CVE-2025-66589 (GCVE-0-2025-66589)

Vulnerability from cvelistv5 – Published: 2025-12-11 20:48 – Updated: 2025-12-30 19:56

Title

Out-of-bounds Read vulnerability in AzeoTech DAQFactory

Summary

Severity ?

8.4 (High)


                        
                          CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CWE

CWE-125 - Out-of-bounds Read

Assigner

icscert

References

URL

Tags

https://www.cisa.gov/news-events/ics-advisories/i…

government-resource

Impacted products

	Vendor	Product	Version
	AzeoTech	DAQFactory	Affected: 0 , ≤ Release 20.7 (Build 2555) (custom)

Credits

Michael Heinzl Rocco Calvi (@TecR0c) with TecSecurity of Trend Zero Day Initiative Andrea Micalizzi (@rgod777) of Trend Zero Day Initiative

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-66589",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-12-15T20:30:26.723222Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-12-15T20:34:19.867Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "DAQFactory",
          "vendor": "AzeoTech",
          "versions": [
            {
              "lessThanOrEqual": "Release 20.7 (Build 2555)",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Michael Heinzl"
        },
        {
          "lang": "en",
          "type": "finder",
          "value": "Rocco Calvi (@TecR0c) with TecSecurity of Trend Zero Day Initiative"
        },
        {
          "lang": "en",
          "type": "finder",
          "value": "Andrea Micalizzi (@rgod777) of Trend Zero Day Initiative"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003e\u003c/p\u003e\n\n\u003cp\u003eIn AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Read vulnerability can be exploited by an attacker to cause the program to read data past the end of an allocated buffer. This could allow an attacker to disclose information or cause a system crash.\u003c/p\u003e\u003cbr\u003e\n\n\u003cbr\u003e\n\n\u003cbr\u003e"
            }
          ],
          "value": "In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Read vulnerability can be exploited by an attacker to cause the program to read data past the end of an allocated buffer. This could allow an attacker to disclose information or cause a system crash."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "exploitMaturity": "NOT_DEFINED",
            "privilegesRequired": "NONE",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "ACTIVE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-125",
              "description": "CWE-125 Out-of-bounds Read",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-12-30T19:56:53.491Z",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "tags": [
            "government-resource"
          ],
          "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eAzeoTech has released the following update that addresses these issues:\u003c/p\u003e\u003cul\u003e\u003cli\u003eDAQFactory: Release 21.1\u003c/li\u003e\u003c/ul\u003e\u003cp\u003eAzeoTech also recommends users take the following actions to reduce the risk:\u003c/p\u003e\u003cul\u003e\u003cli\u003eUsers are discouraged from using documents from unknown/untrusted sources.\u003c/li\u003e\u003cli\u003eUsers are encouraged to store .ctl files in a folder only writeable by admin-level users.\u003c/li\u003e\u003cli\u003eUsers are encouraged to operate in \u201cSafe Mode\u201d when loading documents that have been out of their control.\u003c/li\u003e\u003cli\u003eUsers are encouraged to apply a document editing password to their documents.\u003c/li\u003e\u003c/ul\u003e\n\n\u003cbr\u003e"
            }
          ],
          "value": "AzeoTech has released the following update that addresses these issues:\n\n  *  DAQFactory: Release 21.1\n\n\nAzeoTech also recommends users take the following actions to reduce the risk:\n\n  *  Users are discouraged from using documents from unknown/untrusted sources.\n  *  Users are encouraged to store .ctl files in a folder only writeable by admin-level users.\n  *  Users are encouraged to operate in \u201cSafe Mode\u201d when loading documents that have been out of their control.\n  *  Users are encouraged to apply a document editing password to their documents."
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Out-of-bounds Read vulnerability in AzeoTech DAQFactory",
      "x_generator": {
        "engine": "Vulnogram 0.5.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2025-66589",
    "datePublished": "2025-12-11T20:48:47.912Z",
    "dateReserved": "2025-12-04T21:11:02.201Z",
    "dateUpdated": "2025-12-30T19:56:53.491Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

VAR-202512-0019

CVE-2025-66589 (GCVE-0-2025-66589)

Tags

Sightings

Nomenclature