Risk Summary
Successful exploitation of this vulnerability could allow an attacker to upload malicious .ctl files that may lead to arbitrary code execution.
CVEs (1)
Remediations
- Users are discouraged from using documents from unknown/untrusted sources.
- Users are encouraged to store .ctl files in a folder only writeable by admin-level users.
- Users are encouraged to operate in "Safe Mode" when loading documents that have been out of their control.
- Users are encouraged to apply a document editing password to their documents.
Affected Vendors
AzeoTech
Affected Products (1)
AzeoTech
·
DAQFactory
<=21.1
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more