CVE-2026-12390

Description

In AzeoTech DAQFactory versions 21.1 and prior, a Type Confusion vulnerability can be exploited by an attacker using specially crafted .ctl files which can result in code execution.

References

• https://www.cisa.gov/news-events/ics-advisories/icsa-26-169-02