AzeoTech DAQFactory
CVE-2021-42698

7.8HIGH

Key Information:

Vendor: Azeotech
Status: Daqfactory
Vendor: CVE Published:; 5 November 2021

What is CVE-2021-42698?

Project files are stored memory objects in the form of binary serialized data that can later be read and deserialized again to instantiate the original objects in memory. Malicious manipulation of these files may allow an attacker to corrupt memory.

Affected Version(s)

DAQFactory All versions

References

https://us-cert.cisa.gov/ics/advisories/icsa-21-308-02

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 5, 2021
Vulnerability Reserved
Oct 18, 2021

CVE-2021-42698 Data

JSON

Azeotech

What is CVE-2021-42698?

Affected Version(s)

References

CVSS V3.1

Timeline