Vulnerabilities > NI > High

DATE CVE VULNERABILITY TITLE RISK
2020-12-11 CVE-2020-25191 Incorrect Permission Assignment for Critical Resource vulnerability in NI Compactrio Firmware
Incorrect permissions are set by default for an API entry-point of a specific service, allowing a non-authenticated user to trigger a function that could reboot the CompactRIO (Driver versions prior to 20.5) remotely.
network
low complexity
ni CWE-732
7.5
2017-09-05 CVE-2017-2779 Out-of-bounds Write vulnerability in NI Labview
An exploitable memory corruption vulnerability exists in the RSRC segment parsing functionality of LabVIEW 2017, LabVIEW 2016, LabVIEW 2015, and LabVIEW 2014.
local
low complexity
ni CWE-787
7.8
2017-03-31 CVE-2017-2775 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in NI Labview 16.0.0.49152
An exploitable memory corruption vulnerability exists in the LvVariantUnflatten functionality in 64-bit versions of LabVIEW before 2015 SP1 f7 Patch and 2016 before f2 Patch.
local
low complexity
ni CWE-119
7.8