CVE-2026-32861 Out-of-Bounds Write Vulnerability in NI LabVIEW when loading lvclass file

🗓️ 07 Apr 2026 19:46:45Reported by NIType

Out-of-bounds write in LabVIEW class file loading can cause memory corruption, disclosure, or code execution.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2026-32861	7 Apr 202619:46	–	attackerkb
Circl	CVE-2026-32861	7 Apr 202621:22	–	circl
CNNVD	NI LabVIEW 安全漏洞	7 Apr 202600:00	–	cnnvd
CVE	CVE-2026-32861	7 Apr 202619:46	–	cve
EUVD	EUVD-2026-19901	7 Apr 202621:32	–	euvd
Tenable Nessus	NI LabVIEW < 2023 Q3 Patch 9 / 2024.x < 2024 Q3 Patch 6 / 2025.x < 2025 Q3 Patch 4 / 2026.x < 2026 Q1 Patch 1 Multiple Memory Corruption Vulnerabilities	17 Apr 202600:00	–	nessus
NVD	CVE-2026-32861	7 Apr 202620:16	–	nvd
Positive Technologies	PT-2026-30999	7 Apr 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-32861	5 Jun 202619:20	–	redhatcve
Vulnrichment	CVE-2026-32861 Out-of-Bounds Write Vulnerability in NI LabVIEW when loading lvclass file	7 Apr 202619:46	–	vulnrichment

[
  {
    "vendor": "NI",
    "product": "LabVIEW",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "23.0.0",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "23.1.0",
        "lessThan": "23.3.9",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "24.1.0",
        "lessThan": "24.3.6",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "25.1.0",
        "lessThan": "25.3.4",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "26.1.0",
        "lessThan": "26.1.1",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
ni	www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/2026/lv-class-file-parsing-memory-corruption-vulnerability-in-ni-labview.html

07 Apr 2026 19:46Current

CVSS 3.17.8

CVSS 48.5

EPSS0.0022

CWE-787