Lucene search

K
NiLabview

27 matches found

CVE
CVE
added 2017/09/05 6:29 p.m.64 views

CVE-2017-2779

An exploitable memory corruption vulnerability exists in the RSRC segment parsing functionality of LabVIEW 2017, LabVIEW 2016, LabVIEW 2015, and LabVIEW 2014. A specially crafted Virtual Instrument (VI) file can cause an attacker controlled looping condition resulting in an arbitrary null write. An...

7.8CVSS7.8AI score0.00616EPSS
CVE
CVE
added 2024/12/10 4:15 p.m.63 views

CVE-2024-10494

An out of bounds read due to improper input validation in HeapObjMapImpl.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior...

8.4CVSS7.7AI score0.00037EPSS
CVE
CVE
added 2022/04/21 5:15 a.m.62 views

CVE-2022-27237

There is a cross-site scripting (XSS) vulnerability in an NI Web Server component installed with several NI products. Depending on the product(s) in use, remediation guidance includes: install SystemLink version 2021 R3 or later, install FlexLogger 2022 Q2 or later, install LabVIEW 2021 SP1, instal...

6.1CVSS6AI score0.00495EPSS
CVE
CVE
added 2024/12/10 4:15 p.m.62 views

CVE-2024-10496

An out of bounds read due to improper input validation in BuildFontMap in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 ...

8.4CVSS7.7AI score0.00037EPSS
CVE
CVE
added 2024/03/11 4:15 p.m.61 views

CVE-2024-23611

An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

7.8CVSS7.9AI score0.01066EPSS
CVE
CVE
added 2025/04/09 7:15 p.m.61 views

CVE-2025-2630

There is a DLL hijacking vulnerability due to an uncontrolled search path that exists in NI LabVIEW. This vulnerability may result in arbitrary code execution. Successful exploitation requires an attacker to insert a malicious DLL into the uncontrolled search path. This vulnerability affects NI Lab...

7.8CVSS7.3AI score0.00029EPSS
CVE
CVE
added 2013/08/06 8:55 p.m.60 views

CVE-2013-5022

Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allows remote attackers to create and execute arbitrary files via a full pathname in an argument to the...

10CVSS7.5AI score0.01404EPSS
CVE
CVE
added 2024/03/11 4:15 p.m.60 views

CVE-2024-23608

An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

7.8CVSS7.9AI score0.01442EPSS
CVE
CVE
added 2017/03/31 6:59 p.m.58 views

CVE-2017-2775

An exploitable memory corruption vulnerability exists in the LvVariantUnflatten functionality in 64-bit versions of LabVIEW before 2015 SP1 f7 Patch and 2016 before f2 Patch. A specially crafted VI file can cause a user controlled value to be used as a loop terminator resulting in internal heap cor...

7.8CVSS7.8AI score0.00868EPSS
CVE
CVE
added 2024/12/10 4:15 p.m.56 views

CVE-2024-10495

An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabV...

8.4CVSS7.7AI score0.00037EPSS
CVE
CVE
added 2024/03/11 4:15 p.m.54 views

CVE-2024-23610

An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

7.8CVSS7.9AI score0.01442EPSS
CVE
CVE
added 2013/08/06 8:55 p.m.53 views

CVE-2013-5021

Multiple absolute path traversal vulnerabilities in National Instruments cwui.ocx, as used in National Instruments LabWindows/CVI 2012 SP1 and earlier, National Instruments LabVIEW 2012 SP1 and earlier, the Data Analysis component in ABB DataManager 1 through 6.3.6, and other products allow remote ...

9.3CVSS7.5AI score0.00739EPSS
CVE
CVE
added 2024/03/11 4:15 p.m.51 views

CVE-2024-23609

An improper error handling vulnerability in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

7.8CVSS7.8AI score0.00394EPSS
CVE
CVE
added 2024/03/11 4:15 p.m.51 views

CVE-2024-23612

An improper error handling vulnerability in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

7.8CVSS7.8AI score0.00394EPSS
CVE
CVE
added 2024/07/23 2:15 p.m.51 views

CVE-2024-4079

An out of bounds read due to a missing bounds check in LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

7.8CVSS7.7AI score0.00012EPSS
CVE
CVE
added 2025/04/09 8:15 p.m.46 views

CVE-2025-2631

Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW in InitCPUInformation() that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI Lab...

8.5CVSS7.7AI score0.00029EPSS
CVE
CVE
added 2013/08/06 8:55 p.m.44 views

CVE-2013-5023

The ActiveX controls in the HelpAsst component in NI Help Links in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allow remote attackers to cause a denial of service by triggering the display of local .chm files.

4.3CVSS6.7AI score0.005EPSS
CVE
CVE
added 2025/04/09 8:15 p.m.44 views

CVE-2025-2632

Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW reading CPU info from cache that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI...

8.5CVSS7.7AI score0.00029EPSS
CVE
CVE
added 2024/07/23 2:15 p.m.40 views

CVE-2024-4080

A memory corruption issue due to an improper length check in LabVIEW tdcore.dll may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

8.4CVSS7.9AI score0.00012EPSS
CVE
CVE
added 2024/07/23 2:15 p.m.39 views

CVE-2024-4081

A memory corruption issue due to an improper length check in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects NI LabVIEW 2024 Q1 and prior versions.

8.4CVSS7.9AI score0.00012EPSS
CVE
CVE
added 2025/04/09 7:15 p.m.37 views

CVE-2025-2629

There is a DLL hijacking vulnerability due to an uncontrolled search path that exists in NI LabVIEW when loading NI Error Reporting. This vulnerability may result in arbitrary code execution. Successful exploitation requires an attacker to insert a malicious DLL into the uncontrolled search path. T...

7.8CVSS7.3AI score0.00029EPSS
CVE
CVE
added 2024/07/22 8:15 p.m.32 views

CVE-2024-6638

An integer overflow vulnerability due to improper input validation when reading TDMS files in LabVIEW may result in an infinite loop. Successful exploitation requires an attacker to provide a user with a specially crafted TDMS file. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

5.5CVSS5.5AI score0.00028EPSS
CVE
CVE
added 2025/07/29 10:15 p.m.6 views

CVE-2025-7848

A memory corruption vulnerability due to improper input validation in lvpict.cpp exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versi...

8.5CVSS7.3AI score0.00046EPSS
CVE
CVE
added 2025/07/23 4:15 p.m.5 views

CVE-2025-2633

Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in lvre!UDecStrToNum that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW...

7.8CVSS6.8AI score0.00037EPSS
CVE
CVE
added 2025/07/29 10:15 p.m.5 views

CVE-2025-7849

A memory corruption vulnerability due to improper error handling when a VILinkObj is null exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and pr...

8.5CVSS7.3AI score0.00046EPSS
CVE
CVE
added 2025/07/23 4:15 p.m.4 views

CVE-2025-2634

Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in fontmgr may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and pr...

7.8CVSS6.8AI score0.00037EPSS
CVE
CVE
added 2025/07/29 10:15 p.m.4 views

CVE-2025-7361

A code injection vulnerability due to an improper initialization check exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI using a CIN node. This vulnerability affects 32-bit NI LabVIEW 2025 Q1 a...

8.5CVSS7.3AI score0.00025EPSS