CVE-2025-66587 - Vulnerability Details

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Azeotech Subscribe	Daqfactory Subscribe

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Azeotech Subscribe	Daqfactory Subscribe

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

No reference.

History

Tue, 30 Dec 2025 20:30:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-122
References	https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03
Metrics	cvssV4_0 `{'score': 7.3, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X'}`

Tue, 30 Dec 2025 20:15:00 +0000

Type	Values Removed	Values Added
Title	Heap-based Buffer Overflow vulnerability in AzeoTech DAQFactory
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 30 Dec 2025 20:00:00 +0000

Type	Values Removed	Values Added
Description	In AzeoTech DAQFactory release 20.7 (Build 2555), the affected application is vulnerable to memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process.	This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Metrics	cvssV4_0 `{'score': 7.3, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}`	cvssV4_0 `{'score': 7.3, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X'}`

Tue, 16 Dec 2025 23:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 12 Dec 2025 09:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Azeotech Azeotech daqfactory
Vendors & Products		Azeotech Azeotech daqfactory

Thu, 11 Dec 2025 21:00:00 +0000

Type	Values Removed	Values Added
Description		In AzeoTech DAQFactory release 20.7 (Build 2555), the affected application is vulnerable to memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute code in the context of the current process.
Title		Heap-based Buffer Overflow vulnerability in AzeoTech DAQFactory
Weaknesses		CWE-122
References		https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03
Metrics		cvssV4_0 `{'score': 7.3, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}`

Projects

Sign in to view the affected projects.

MITRE

Status: REJECTED

Assigner: icscert

Published: 2025-12-11T20:53:08.409Z

Updated: 2025-12-30T19:53:41.641Z

Reserved: 2025-12-04T21:11:02.201Z

Link: CVE-2025-66587

Vulnrichment

Updated:

NVD

Status : Rejected

Published: 2025-12-11T21:15:57.733

Modified: 2025-12-30T20:16:01.160

Link: CVE-2025-66587

Redhat

No data.

OpenCVE Enrichment

Updated: 2025-12-12T08:49:56Z

Weaknesses

No weakness.

Metrics

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object