CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
23.6%
An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker could exploit this vulnerability by getting a user to open a specially crafted data file.
Vendor | Product | Version | CPE |
---|---|---|---|
ni | topografix_data_plugin | 2023 | cpe:2.3:a:ni:topografix_data_plugin:2023:-:*:*:*:gpx:*:* |
ni | diadem | 2014 | cpe:2.3:a:ni:diadem:2014:*:*:*:*:*:*:* |
ni | diadem | 2015 | cpe:2.3:a:ni:diadem:2015:-:*:*:*:*:*:* |
ni | diadem | 2015 | cpe:2.3:a:ni:diadem:2015:sp2:*:*:*:*:*:* |
ni | diadem | 2017 | cpe:2.3:a:ni:diadem:2017:-:*:*:*:*:*:* |
ni | diadem | 2017 | cpe:2.3:a:ni:diadem:2017:sp1:*:*:*:*:*:* |
ni | diadem | 2018 | cpe:2.3:a:ni:diadem:2018:-:*:*:*:*:*:* |
ni | diadem | 2018 | cpe:2.3:a:ni:diadem:2018:sp1:*:*:*:*:*:* |
ni | diadem | 2019 | cpe:2.3:a:ni:diadem:2019:-:*:*:*:*:*:* |
ni | diadem | 2019 | cpe:2.3:a:ni:diadem:2019:sp1:*:*:*:*:*:* |
[
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "TopoGrafix DataPlugin for GPX",
"vendor": "NI",
"versions": [
{
"lessThan": "2023 Q4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "DIAdem",
"vendor": "NI",
"versions": [
{
"lessThan": "2023 Q2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "VeriStand",
"vendor": "NI",
"versions": [
{
"lessThanOrEqual": "2023 Q4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "FlexLogger",
"vendor": "NI",
"versions": [
{
"lessThanOrEqual": "2023 Q4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
23.6%