ГлавнаяУязвимости → CVE-2025-66585
7.8высокая

CVE-2025-66585

Описание

In AzeoTech DAQFactory release 20.7 (Build 2555), a use after free vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process.

Затрагиваемое ПО
Azeotech Daqfactory
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-345-03.jsonhttps://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03