Out-of-bounds Write Vulnerability in AzeoTech DAQFactory
CVE-2025-66590

8.4HIGH

Key Information:

Vendor: Azeotech
Status: Daqfactory
Vendor: CVE Published:; 11 December 2025

What is CVE-2025-66590?

In AzeoTech DAQFactory version 20.7 (Build 2555), a vulnerability allows attackers to exploit an out-of-bounds write condition. This could lead to unauthorized data manipulation, arbitrary code execution, or a potential system crash, jeopardizing the integrity and availability of the application.

Affected Version(s)

DAQFactory 0

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-3...

government-resource

CVSS V4

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 11, 2025
Vulnerability Reserved
Dec 4, 2025

Credit

Michael Heinzl

ZDI

JSON

Azeotech

What is CVE-2025-66590?

Affected Version(s)

References

CVSS V4

Timeline

Credit