CVE ID: CVE-2025-63927 Product Information: - Product Name: airpig2011 IEC104 - Project URL: https://github.com/airpig2011/IEC104 Affected Version: - Specific Version/Commit: Commit be6d841 (2019-07-08) Vulnerability Type: heap-use-after-free Description: - During multi-threaded client execution, the function can access memory that has already been freed, potentially causing program crashes or undefined behavior. Reproduction Steps: 1. Compile with ASan enabled. 2. Run the program in client mode with high-concurrency parameters. 3. Observe heap-use-after-free error details during execution. ASAN Report: - Error: AddressSanitizer: heap-use-after-free - Address: 0x606000000020 - Function: at line 136 - Freed memory by thread T74 and accessed by thread T96. Summary: - Accessing freed memory in leads to undefined behavior and program crashes.