CNNVD-202512-2073 Information

CNNVD ID

CNNVD-202512-2073

Related CVE

CVE-2025-66586

• CNNVD Published: 2025-12-11

Description (Chinese)

AzeoTech DAQFactory是AzeoTech公司的一款轻松创建 HMI/SCADA 应用程序所需的工具。 AzeoTech DAQFactory 20.7版本存在安全漏洞，该漏洞源于解析特制.ctl文件时使用不兼容类型访问资源，可能导致内存损坏和执行任意代码。

Description (English)

AzeoTech DAQFactory is a tool needed by AzeoTech to easily create HMI/SCADA applications. AzeoTech DAQFactory version 20.7 contains a security loophole, which stems from the use of incompatible type of access resources when deconstructing a special.ctl file, which may lead to memory damage and the implementation of any code.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

AzeoTech

Published

2025-12-11

Last Modified

2026-02-24

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03