CVE-2025-66590

Out-of-bounds Write vulnerability in AzeoTech DAQFactory

CVSS 8.4 HIGHEPSS 0.3%CWE-787

In AzeoTech DAQFactory release 20.7 (Build 2555), an out-of-bounds write vulnerability can be exploited by an attacker to cause the program to write data past the end of an allocated memory buffer. This can lead to arbitrary code execution or a system crash.

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected products

AzeoTech · DAQFactory

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-345-03.json https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03