CVE-2026-12390— Access of resource using incompatible type ('type confusion') in AzeoTech DAQFactory
Possible ATT&CK Techniques 1AI
T1203 · Exploitation for Client ExecutionAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| AzeoTech | DAQFactory | ≤ 21.1 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-12390
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Access of resource using incompatible type ('type confusion') in AzeoTech DAQFactory
Source: NVD (National Vulnerability Database)
Vulnerability Description
In AzeoTech DAQFactory versions 21.1 and prior, a Type Confusion vulnerability can be exploited by an attacker using specially crafted .ctl files which can result in code execution.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用不兼容类型访问资源(类型混淆)
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| AzeoTech | DAQFactory | 0 ~ 21.1 | - |
II. Public POCs for CVE-2026-12390
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-12390
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-12390 (1)
IV. Related Vulnerabilities
Same product: DAQFactory
- CVE-2025-66585
Use After Free vulnerability in AzeoTech DAQFactory - CVE-2025-66586
Type Confusion vulnerability in AzeoTech DAQFactory - CVE-2025-66588
Access of Uninitialized Pointer vulnerability in AzeoTech DA - CVE-2025-66589
Out-of-bounds Read vulnerability in AzeoTech DAQFactory - CVE-2025-66590
Out-of-bounds Write vulnerability in AzeoTech DAQFactory
Same vendor: AzeoTech
- CVE-2025-66585
Use After Free vulnerability in AzeoTech DAQFactory - CVE-2025-66586
Type Confusion vulnerability in AzeoTech DAQFactory - CVE-2025-66588
Access of Uninitialized Pointer vulnerability in AzeoTech DA - CVE-2025-66589
Out-of-bounds Read vulnerability in AzeoTech DAQFactory - CVE-2025-66590
Out-of-bounds Write vulnerability in AzeoTech DAQFactory
Same weakness: CWE-843
- CVE-2026-8358
Heap buffer overflow in spreadsheet tracked-changes import - CVE-2026-45635
Windows UPnP Device Host Remote Code Execution Vulnerability - CVE-2026-45600
Windows Kernel-Mode Driver Elevation of Privilege Vulnerabil - CVE-2026-45641
Windows Hyper-V Remote Code Execution Vulnerability - CVE-2026-45456
Microsoft Outlook and Word Remote Code Execution Vulnerabili
V. Comments for CVE-2026-12390
No comments yet