Access of Uninitialized Pointer vulnerability in AzeoTech DAQFactory_CVE-2025-66588

8.4 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

In AzeoTech DAQFactory release 20.7 (Build 2555), an Access of Uninitialized Pointer vulnerability can be exploited by an attacker which can lead to arbitrary code execution.

Basic Information

ID CVE-2025-66588

Source icscert

Published Dec 11, 2025 at 20:50

Affected Product

Vendor AzeoTech

Product DAQFactory

Affected Versions AzeoTech DAQFactory 0

CWE Classification

CWE-824

References

www.cisa.gov /news-events/ics-advisories/icsa-25-345-03

{
    "lastseen": "",
    "description": "In AzeoTech DAQFactory release 20.7 (Build 2555), an Access of Uninitialized Pointer vulnerability can be exploited by an attacker which can lead to arbitrary code execution.",
    "published": "2025-12-11T20:50:39.132Z",
    "modified": "2025-12-11T20:50:39.132Z",
    "type": "cve",
    "title": "Access of Uninitialized Pointer vulnerability in AzeoTech DAQFactory",
    "source": "icscert",
    "references": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-03",
    "id": "CVE-2025-66588",
    "bulletinFamily": "",
    "cwe": [
        "CWE-824"
    ],
    "cvelist": null,
    "sourceData": "AzeoTech DAQFactory 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.4,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DAQFactory",
    "version": "0",
    "vendor": "AzeoTech",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}