Vulnerabilities > NI > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-23 | CVE-2024-4079 | Out-of-bounds Read vulnerability in NI Labview An out of bounds read due to a missing bounds check in LabVIEW may disclose information or result in arbitrary code execution. | 7.8 |
| 2024-07-23 | CVE-2024-4080 | Out-of-bounds Write vulnerability in NI Labview A memory corruption issue due to an improper length check in LabVIEW tdcore.dll may disclose information or result in arbitrary code execution. | 7.8 |
| 2024-07-23 | CVE-2024-4081 | Out-of-bounds Write vulnerability in NI Labview A memory corruption issue due to an improper length check in NI LabVIEW may disclose information or result in arbitrary code execution. | 7.8 |
| 2024-07-22 | CVE-2024-6791 | Path Traversal vulnerability in NI Veristand A directory path traversal vulnerability exists when loading a vsmodel file in NI VeriStand that may result in remote code execution. | 7.8 |
| 2024-07-22 | CVE-2024-6121 | Unspecified vulnerability in NI Flexlogger and Systemlink An out-of-date version of Redis shipped with NI SystemLink Server is susceptible to multiple vulnerabilities, including CVE-2022-24834. | 7.8 |
| 2023-10-05 | CVE-2023-4570 | Unspecified vulnerability in NI Measurementlink 1.0.0/1.0.1/1.1.0 An improper access restriction in NI MeasurementLink Python services could allow an attacker on an adjacent network to reach services exposed on localhost. low complexity ni | 8.8 |
| 2022-12-01 | CVE-2022-42718 | Incorrect Default Permissions vulnerability in NI Labview Command Line Interface Incorrect default permissions in the installation folder for NI LabVIEW Command Line Interface (CLI) may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2022-09-16 | CVE-2022-35415 | Improper Input Validation vulnerability in NI Configuration Manager An improper input validation in NI System Configuration Manager before 22.5 may allow a privileged user to potentially enable escalation of privilege via local access. | 7.8 |
| 2021-11-12 | CVE-2021-42563 | Unquoted Search Path or Element vulnerability in NI Service Locator There is an Unquoted Service Path in NI Service Locator (nisvcloc.exe) in versions prior to 18.0 on Windows. | 7.8 |
| 2021-09-17 | CVE-2021-38304 | Improper Input Validation vulnerability in NI Ni-Pal 20.0.0 Improper input validation in the National Instruments NI-PAL driver in versions 20.0.0 and prior may allow a privileged user to potentially enable escalation of privilege via local access. | 7.8 |