Vulnerabilities > NI
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-22 | CVE-2024-6806 | Missing Authorization vulnerability in NI Veristand The NI VeriStand Gateway is missing authorization checks when an actor attempts to access Project resources. | 9.8 |
| 2024-07-22 | CVE-2024-6121 | Unspecified vulnerability in NI Flexlogger and Systemlink An out-of-date version of Redis shipped with NI SystemLink Server is susceptible to multiple vulnerabilities, including CVE-2022-24834. | 7.8 |
| 2024-07-22 | CVE-2024-6122 | Incorrect Default Permissions vulnerability in NI Flexlogger and Systemlink An incorrect permission in the installation directory for the shared NI SystemLink Server KeyValueDatabase service may result in information disclosure via local access. | 5.5 |
| 2024-03-11 | CVE-2024-23610 | Unspecified vulnerability in NI Labview An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. | 7.8 |
| 2024-03-11 | CVE-2024-23611 | Unspecified vulnerability in NI Labview An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. | 7.8 |
| 2023-11-08 | CVE-2023-5136 | Incorrect Permission Assignment for Critical Resource vulnerability in NI products An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. | 5.5 |
| 2023-10-18 | CVE-2023-4601 | Out-of-bounds Write vulnerability in NI System Configuration A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and/or arbitrary code execution. | 9.8 |
| 2023-10-05 | CVE-2023-4570 | Unspecified vulnerability in NI Measurementlink 1.0.0/1.0.1/1.1.0 An improper access restriction in NI MeasurementLink Python services could allow an attacker on an adjacent network to reach services exposed on localhost. low complexity ni | 8.8 |
| 2022-12-01 | CVE-2022-42718 | Incorrect Default Permissions vulnerability in NI Labview Command Line Interface Incorrect default permissions in the installation folder for NI LabVIEW Command Line Interface (CLI) may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2022-09-16 | CVE-2022-35415 | Improper Input Validation vulnerability in NI Configuration Manager An improper input validation in NI System Configuration Manager before 22.5 may allow a privileged user to potentially enable escalation of privilege via local access. | 7.8 |