What is CVE-2025-66586?

CVE-2025-66586 is a high-severity vulnerability in Azeotech Daqfactory, classified under Access of Resource Using Incompatible Type (Type Confusion). CVSS score: 7.8/10. Published 2025-12-11.

How severe is CVE-2025-66586?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Azeotech Daqfactory

CVE-2025-66586

In AzeoTech DAQFactory release 20.7 (Build 2555), an access of resource using incompatible type vulnerability can be exploited to cause memory corruption while parsing specially crafted .ctl files. This could allow an attacker to execute c…

EPSS: 0.000 (6.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.

Affected products

Azeotech Daqfactory — versions Release 21.1, 0

Weakness classification (CWE)

CWE-843 — Access of Resource Using Incompatible Type (Type Confusion)

References

ics-cert@hq.dhs.gov (US Government Resource, Third Party Advisory, government-resource)
ics-cert@hq.dhs.gov

Frequently asked questions

What is CVE-2025-66586?: CVE-2025-66586 is a high-severity vulnerability in Azeotech Daqfactory, classified under Access of Resource Using Incompatible Type (Type Confusion). CVSS score: 7.8/10. Published 2025-12-11.
How severe is CVE-2025-66586?: High severity. CVSS v3 base score is 7.8 out of 10.