Lucene search
K

11 matches found

OSV
OSV
added 2024/07/22 9:15 p.m.4 views

CVE-2024-6791

A directory path traversal vulnerability exists when loading a vsmodel file in NI VeriStand that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .vsmodel file. This vulnerability affects VeriStand 2024 Q2 and prior versio...

7.8CVSS6.1AI score0.00458EPSS
Exploits0References1
NVD
NVD
added 2024/07/22 9:15 p.m.28 views

CVE-2024-6791

A directory path traversal vulnerability exists when loading a vsmodel file in NI VeriStand that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .vsmodel file. This vulnerability affects VeriStand 2024 Q2 and prior versio...

7.8CVSS0.00458EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/22 9:3 p.m.24 views

CVE-2024-6806 Missing Authorization Checks In NI VeriStand Gateway For Project Resources

The NI VeriStand Gateway is missing authorization checks when an actor attempts to access Project resources. These missing checks may result in remote code execution. This affects NI VeriStand 2024 Q2 and prior versions...

9.8CVSS0.01019EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/22 9:0 p.m.42 views

CVE-2024-6805 Missing Authorization Checks in NI VeriStand Gateway for File Transfer Resources

The NI VeriStand Gateway is missing authorization checks when an actor attempts to access File Transfer resources. These missing checks may result in information disclosure or remote code execution. This affects NI VeriStand 2024 Q2 and prior versions...

7.5CVSS0.00954EPSS
Exploits0References1
CVE
CVE
added 2024/07/22 9:0 p.m.54 views

CVE-2024-6805

The CVE-2024-6805 entry concerns NI VeriStand Gateway missing authorization checks when an actor accesses File Transfer resources (IFileTransferServer / ProjectServer surface). Affected product: NI VeriStand 2024 Q2 and prior versions. Impact stated in sources includes information disclosure and ...

9.8CVSS7.5AI score0.00954EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/22 8:47 p.m.14 views

CVE-2024-6793 Deserialization of Untrusted Data in NI VeriStand DataLogging Server

A deserialization of untrusted data vulnerability exists in NI VeriStand DataLogging Server that may result in remote code execution. Successful exploitation requires an attacker to send a specially crafted message. These vulnerabilities affect NI VeriStand 2024 Q2 and prior versions...

9.8CVSS9.8AI score0.01193EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/22 8:38 p.m.14 views

CVE-2024-6791 Directory Path Traversal Vulnerability in NI VeriStand with vsmodel Files

A directory path traversal vulnerability exists when loading a vsmodel file in NI VeriStand that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .vsmodel file. This vulnerability affects VeriStand 2024 Q2 and prior versio...

7.8CVSS7.5AI score0.00458EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/22 8:38 p.m.31 views

CVE-2024-6791 Directory Path Traversal Vulnerability in NI VeriStand with vsmodel Files

A directory path traversal vulnerability exists when loading a vsmodel file in NI VeriStand that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .vsmodel file. This vulnerability affects VeriStand 2024 Q2 and prior versio...

7.8CVSS0.00458EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/22 8:1 p.m.21 views

CVE-2024-6675 Deserialization of Untrusted Data Vulnerability in NI VeriStand Project File

A deserialization of untrusted data vulnerability exists in NI VeriStand that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects VeriStand 2024 Q2 and prior versions...

7.8CVSS0.00396EPSS
Exploits0References1
CVE
CVE
added 2024/07/22 8:1 p.m.38 views

CVE-2024-6675

CVE-2024-6675 describes a deserialization of untrusted data vulnerability in NI VeriStand, specifically in the NIVSPRJ/project-file parsing. The underlying flaw is deserializing data from a crafted project file during processing of NIVSPRJ elements, which can lead to remote code execution. Exploi...

7.8CVSS7.8AI score0.00396EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/22 8:1 p.m.13 views

CVE-2024-6675 Deserialization of Untrusted Data Vulnerability in NI VeriStand Project File

A deserialization of untrusted data vulnerability exists in NI VeriStand that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects VeriStand 2024 Q2 and prior versions...

7.8CVSS7.6AI score0.00396EPSS
Exploits0References1
Rows per page
Query Builder