Azeotech

Daqfactory

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.3

CVE-2025-66584

  • EPSS 0.02%
  • Veröffentlicht 11.12.2025 20:58:53
  • Zuletzt bearbeitet 12.12.2025 15:17:31

In AzeoTech DAQFactory release 20.7 (Build 2555), a Stack-Based Buffer Overflow vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the c...

7.3

CVE-2025-66585

  • EPSS 0.02%
  • Veröffentlicht 11.12.2025 20:56:16
  • Zuletzt bearbeitet 12.12.2025 15:17:31

In AzeoTech DAQFactory release 20.7 (Build 2555), a Use After Free vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current proces...

7.3

CVE-2025-66586

  • EPSS 0.02%
  • Veröffentlicht 11.12.2025 20:54:38
  • Zuletzt bearbeitet 12.12.2025 15:17:31

In AzeoTech DAQFactory release 20.7 (Build 2555), an Access of Resource Using Incompatible Type vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the ...

7.3

CVE-2025-66587

  • EPSS 0.02%
  • Veröffentlicht 11.12.2025 20:53:08
  • Zuletzt bearbeitet 12.12.2025 15:17:31

In AzeoTech DAQFactory release 20.7 (Build 2555), the affected application is vulnerable to memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process.

8.4

CVE-2025-66588

  • EPSS 0.02%
  • Veröffentlicht 11.12.2025 20:50:39
  • Zuletzt bearbeitet 12.12.2025 15:17:31

In AzeoTech DAQFactory release 20.7 (Build 2555), an Access of Uninitialized Pointer vulnerability can be exploited by an attacker which can lead to arbitrary code execution.

8.4

CVE-2025-66589

  • EPSS 0.01%
  • Veröffentlicht 11.12.2025 20:48:47
  • Zuletzt bearbeitet 12.12.2025 15:17:31

In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Read vulnerability can be exploited by an attacker to cause the program to read data past the end of an allocated buffer. This could allow an attacker to disclose information or cause...

8.4

CVE-2025-66590

  • EPSS 0.02%
  • Veröffentlicht 11.12.2025 20:45:55
  • Zuletzt bearbeitet 12.12.2025 15:17:31

In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Write vulnerability can be exploited by an attacker to cause the program to write data past the end of an allocated memory buffer. This can lead to arbitrary code execution or a syste...

7.8

CVE-2021-42543

  • EPSS 0.17%
  • Veröffentlicht 05.11.2021 16:15:07
  • Zuletzt bearbeitet 21.11.2024 06:27:46

The affected application uses specific functions that could be abused through a crafted project file, which could lead to code execution, system reboot, and system shutdown.

7.8

CVE-2021-42698

  • EPSS 0.13%
  • Veröffentlicht 05.11.2021 16:15:07
  • Zuletzt bearbeitet 21.11.2024 06:27:59

Project files are stored memory objects in the form of binary serialized data that can later be read and deserialized again to instantiate the original objects in memory. Malicious manipulation of these files may allow an attacker to corrupt memory.

5.9

CVE-2021-42699

  • EPSS 0.09%
  • Veröffentlicht 05.11.2021 16:15:07
  • Zuletzt bearbeitet 21.11.2024 06:27:59

The affected product is vulnerable to cookie information being transmitted as cleartext over HTTP. An attacker can capture network traffic, obtain the user’s cookie and take over the account.