Vulnerabilities > NI
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-23 | CVE-2024-4079 | Out-of-bounds Read vulnerability in NI Labview An out of bounds read due to a missing bounds check in LabVIEW may disclose information or result in arbitrary code execution. | 7.8 |
| 2024-07-23 | CVE-2024-4080 | Out-of-bounds Write vulnerability in NI Labview A memory corruption issue due to an improper length check in LabVIEW tdcore.dll may disclose information or result in arbitrary code execution. | 7.8 |
| 2024-07-23 | CVE-2024-4081 | Out-of-bounds Write vulnerability in NI Labview A memory corruption issue due to an improper length check in NI LabVIEW may disclose information or result in arbitrary code execution. | 7.8 |
| 2024-07-22 | CVE-2024-6791 | Path Traversal vulnerability in NI Veristand A directory path traversal vulnerability exists when loading a vsmodel file in NI VeriStand that may result in remote code execution. | 7.8 |
| 2024-07-22 | CVE-2024-6793 | Deserialization of Untrusted Data vulnerability in NI Veristand A deserialization of untrusted data vulnerability exists in NI VeriStand DataLogging Server that may result in remote code execution. | 9.8 |
| 2024-07-22 | CVE-2024-6794 | Deserialization of Untrusted Data vulnerability in NI Veristand A deserialization of untrusted data vulnerability exists in NI VeriStand Waveform Streaming Server that may result in remote code execution. | 9.8 |
| 2024-07-22 | CVE-2024-6805 | Missing Authorization vulnerability in NI Veristand The NI VeriStand Gateway is missing authorization checks when an actor attempts to access File Transfer resources. | 9.8 |
| 2024-07-22 | CVE-2024-6806 | Missing Authorization vulnerability in NI Veristand The NI VeriStand Gateway is missing authorization checks when an actor attempts to access Project resources. | 9.8 |
| 2024-07-22 | CVE-2024-6121 | Unspecified vulnerability in NI Flexlogger and Systemlink An out-of-date version of Redis shipped with NI SystemLink Server is susceptible to multiple vulnerabilities, including CVE-2022-24834. | 7.8 |
| 2024-07-22 | CVE-2024-6122 | Incorrect Default Permissions vulnerability in NI Flexlogger and Systemlink An incorrect permission in the installation directory for the shared NI SystemLink Server KeyValueDatabase service may result in information disclosure via local access. | 5.5 |