CVE-2024-10494

🗓️ 10 Dec 2024 15:49:13Reported by NIType

Out of bounds read in NI LabVIEW may lead to information disclosure or code execution.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-10494	10 Dec 202411:00	–	circl
CNNVD	NI LabVIEW 安全漏洞	10 Dec 202400:00	–	cnnvd
Cvelist	CVE-2024-10494 Out of bounds read in HeapObjMapImpl.cpp in NI LabVIEW	10 Dec 202415:49	–	cvelist
EUVD	EUVD-2024-33501	3 Oct 202520:07	–	euvd
Tenable Nessus	National Instruments LabVIEW < 2024 Q3 Patch 2 Multiple Vulnerabilities	13 Dec 202400:00	–	nessus
NVD	CVE-2024-10494	10 Dec 202416:15	–	nvd
Positive Technologies	PT-2024-16316 · Ni · Labview	10 Dec 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-10494	5 Feb 202505:00	–	redhatcve
Vulnrichment	CVE-2024-10494 Out of bounds read in HeapObjMapImpl.cpp in NI LabVIEW	10 Dec 202415:49	–	vulnrichment

NVD

Node

ni labviewRange≤2021

ni labviewMatch2022q1

ni labviewMatch2022q3

ni labviewMatch2022q3_patch1

ni labviewMatch2022q3_patch2

ni labviewMatch2023q1

ni labviewMatch2023q3

ni labviewMatch2023q3_patch1

ni labviewMatch2023q3_patch2

ni labviewMatch2023q3_patch3

ni labviewMatch2023q3_patch4

ni labviewMatch2024q1

ni labviewMatch2024q1_patch1

ni labviewMatch2024q3

ni labviewMatch2024q3_patch1

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Windows",
      "Linux"
    ],
    "product": "LabVIEW",
    "vendor": "NI",
    "versions": [
      {
        "lessThanOrEqual": "22.3.3",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "23.3.4",
        "status": "affected",
        "version": "23.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "24.3.1",
        "status": "affected",
        "version": "24.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
ni	www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/out-of-bounds-read-vulnerabilities-in-ni-labview-.html

04 Mar 2025 18:40Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.8

CVSS 48.4

EPSS0.00113

SSVC

cve-2024-10494 ni labview information disclosure arbitrary code execution heapobjmapimpl.cpp input validation vulnerability