Approved changes feed: RSS · Atom
cpe:2.3:a:ni:labview:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Ni (3f63e577-22ce-50bf-a016-4ac0c05111ef) |
|---|---|
| Product | Labview (8c1df727-9302-57ce-9cf3-23cd782d9a92) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-32864 |
vulnerable | 2026-06-03 15:20:43.844405 |
Out-of-Bounds Read in mgcore_SH_25_3!aligned_free()
HIGH (7.8)
There is a memory corruption vulnerability due to an out-of-bounds read in mgcore_SH_25_3!aligned_free() in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI file. This vulnerability affects NI LabVIEW 2026 Q1 (26.1.0) and prior versions.
Published: 2026-04-07T19:56:42.923Z
Updated: 2026-04-08T03:55:56.834Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-32863 |
vulnerable | 2026-06-03 15:20:43.841857 |
Out-of-Bounds Read in sentry_transaction_context_set_operation()
HIGH (7.8)
There is a memory corruption vulnerability due to an out-of-bounds read in sentry_transaction_context_set_operation() in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI file. This vulnerability affects NI LabVIEW 2026 Q1 (26.1.0) and prior versions.
Published: 2026-04-07T19:53:51.666Z
Updated: 2026-04-08T03:55:55.727Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-32862 |
vulnerable | 2026-06-03 15:20:43.837532 |
Out-of-Bounds Write in ResFileFactory::InitResourceMgr()
HIGH (7.8)
There is a memory corruption vulnerability due to an out-of-bounds write in ResFileFactory::InitResourceMgr() in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI file. This vulnerability affects NI LabVIEW 2026 Q1 (26.1.0) and prior versions.
Published: 2026-04-07T19:50:36.912Z
Updated: 2026-04-08T03:55:54.567Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-32861 |
vulnerable | 2026-06-03 15:20:43.835120 |
Out-of-Bounds Write Vulnerability in NI LabVIEW when loading lvclass file
HIGH (7.8)
There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVCLASS file in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .lvclass file. This vulnerability affects NI LabVIEW 2026 Q1 (26.1.0) and prior versions.
Published: 2026-04-07T19:46:45.763Z
Updated: 2026-04-08T03:55:58.996Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-32860 |
vulnerable | 2026-06-03 15:20:43.801992 |
Out-of-Bounds Write Vulnerability in NI LabVIEW when loading lvlib file
HIGH (7.8)
There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVLIB file in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .lvlib file. This vulnerability affects NI LabVIEW 2026 Q1 (26.1.0) and prior versions.
Published: 2026-04-07T19:42:36.167Z
Updated: 2026-04-08T03:55:57.909Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-7849 |
vulnerable | 2026-06-03 15:13:41.632444 |
Memory Corruption Issue in NI LabVIEW due to improper error handling
HIGH (7.8)
A memory corruption vulnerability due to improper error handling when a VILinkObj is null exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
Published: 2025-07-29T21:27:20.080Z
Updated: 2026-02-26T17:50:11.357Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-7848 |
vulnerable | 2026-06-03 15:13:41.611328 |
Missing input check in lvpict.cpp used in NI LabVIEW
HIGH (7.8)
A memory corruption vulnerability due to improper input validation in lvpict.cpp exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
Published: 2025-07-29T21:24:32.568Z
Updated: 2026-02-26T17:50:11.817Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-7361 |
vulnerable | 2026-06-03 15:12:30.996576 |
Code Injection Vulnerability in NI LabVIEW when using CIN nodes
HIGH (7.8)
A code injection vulnerability due to an improper initialization check exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI using a CIN node. This vulnerability affects 32-bit NI LabVIEW 2025 Q1 and prior versions. LabVIEW 64-bit versions do not support CIN nodes and are not affected.
Published: 2025-07-29T21:19:28.118Z
Updated: 2026-02-26T17:50:11.978Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-64469 |
vulnerable | 2026-06-03 15:09:39.238785 |
Stack-based Buffer Overflow in LVResource::DetachResource() in NI LabVIEW
HIGH (7.8)
There is a stack-based buffer overflow vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior versions.
Published: 2025-12-18T14:53:36.881Z
Updated: 2026-02-26T16:07:27.577Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-64468 |
vulnerable | 2026-06-03 15:09:39.236409 |
Use-after-Free in sentry!sentry_span_set_data() in NI LabVIEW
HIGH (7.8)
There is a use-after-free vulnerability in sentry!sentry_span_set_data() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior versions
Published: 2025-12-18T14:50:02.888Z
Updated: 2026-02-26T16:07:27.885Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-64467 |
vulnerable | 2026-06-03 15:09:39.233872 |
Out-of-Bounds Read in LVResFile::FindRsrcListEntry() in NI LabVIEW
HIGH (7.8)
There is an out of bounds read vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior versions.
Published: 2025-12-18T14:40:18.924Z
Updated: 2026-02-26T16:07:28.095Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-64466 |
vulnerable | 2026-06-03 15:09:39.231318 |
Out-of-Bounds Read in lvre!ExecPostedProcRecPost() in NI LabVIEW
HIGH (7.8)
There is an out of bounds read vulnerability in NI LabVIEW in lvre!ExecPostedProcRecPost() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior versions.
Published: 2025-12-18T14:38:02.537Z
Updated: 2026-02-26T16:07:28.284Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-64465 |
vulnerable | 2026-06-03 15:09:39.228457 |
Out-of-Bounds Read in lvre!DataSizeTDR() in NI LabVIEW
HIGH (7.8)
There is an out of bounds read vulnerability in NI LabVIEW in lvre!DataSizeTDR() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior versions.
Published: 2025-12-18T14:35:24.931Z
Updated: 2026-02-26T16:07:28.629Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-64464 |
vulnerable | 2026-06-03 15:09:39.225960 |
Out-of-Bounds Read in lvre!VisaWriteFromFile() in NI LabVIEW
HIGH (7.8)
There is an out of bounds read vulnerability in NI LabVIEW in lvre!VisaWriteFromFile() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior versions.
Published: 2025-12-18T14:32:44.050Z
Updated: 2026-02-26T16:07:28.806Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-64463 |
vulnerable | 2026-06-03 15:09:39.223811 |
Out-of-Bounds Read in LVResource::DetachResource() in NI LabVIEW
HIGH (7.8)
There is an out of bounds read vulnerability in NI LabVIEW in LVResource::DetachResource() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior versions.
Published: 2025-12-18T14:28:21.858Z
Updated: 2026-02-26T16:07:28.945Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-64462 |
vulnerable | 2026-06-03 15:09:39.221551 |
Out-of-Bounds Read in LVResFile::RGetMemFileHandle() in NI LabVIEW
HIGH (7.8)
There is an out of bounds read vulnerability in NI LabVIEW in LVResFile::RGetMemFileHandle() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior versions.
Published: 2025-12-18T14:25:21.972Z
Updated: 2026-02-26T16:07:29.097Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-64461 |
vulnerable | 2026-06-03 15:09:39.196332 |
Out of Bounds Write in mgocre_SH_25_3!RevBL() in NI LabVIEW
HIGH (7.8)
There is an out of bounds write vulnerability in NI LabVIEW in mgocre_SH_25_3!RevBL() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior versions.
Published: 2025-12-18T14:21:18.638Z
Updated: 2026-02-26T16:07:29.475Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-2634 |
vulnerable | 2026-06-03 15:00:26.162435 |
Out of Bounds Read Vulnerability in NI LabVIEW when building font map
HIGH (7.8)
Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in fontmgr may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
Published: 2025-07-23T15:53:25.130Z
Updated: 2025-07-23T20:10:00.301Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-2633 |
vulnerable | 2026-06-03 15:00:26.149623 |
Out of Bounds Read Vulnerability in NI LabVIEW when loading fonts
HIGH (7.8)
Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in lvre!UDecStrToNum that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
Published: 2025-07-23T15:49:06.836Z
Updated: 2025-07-23T17:23:55.255Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-2632 |
vulnerable | 2026-06-03 15:00:26.147894 |
Out of Bounds Write Vulnerability in NI LabVIEW reading CPU info from cache
HIGH (7.8)
Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW reading CPU info from cache that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
Published: 2025-04-09T19:14:00.977Z
Updated: 2025-04-09T19:32:06.295Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-2631 |
vulnerable | 2026-06-03 15:00:26.146212 |
Out of Bounds Write Vulnerability in NI LabVIEW in InitCPUInformation()
HIGH (7.8)
Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW in InitCPUInformation() that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
Published: 2025-04-09T19:10:22.077Z
Updated: 2025-04-09T19:32:46.740Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-2630 |
vulnerable | 2026-06-03 15:00:26.144596 |
DLL Hijacking Vulnerability in NI LabVIEW
HIGH (7.3)
There is a DLL hijacking vulnerability due to an uncontrolled search path that exists in NI LabVIEW. This vulnerability may result in arbitrary code execution. Successful exploitation requires an attacker to insert a malicious DLL into the uncontrolled search path. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
Published: 2025-04-09T18:50:05.849Z
Updated: 2025-04-09T18:57:44.369Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-2629 |
vulnerable | 2026-06-03 15:00:26.130401 |
DLL Hijacking Vulnerability in NI LabVIEW When Loading NI Error Reporting
HIGH (7.3)
There is a DLL hijacking vulnerability due to an uncontrolled search path that exists in NI LabVIEW when loading NI Error Reporting. This vulnerability may result in arbitrary code execution. Successful exploitation requires an attacker to insert a malicious DLL into the uncontrolled search path. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
Published: 2025-04-09T18:45:35.434Z
Updated: 2025-04-09T18:58:49.944Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-12097 |
vulnerable | 2026-06-03 14:58:43.794334 |
Relative Path Traversal Vulnerability in NI System Web Server
HIGH (7.5)
There is a relative path traversal vulnerability in the NI System Web Server that may result in information disclosure. Successful exploitation requires an attacker to send a specially crafted request to the NI System Web Server, allowing the attacker to read arbitrary files. This vulnerability existed in the NI System Web Server 2012 and prior versions. It was fixed in 2013.
Published: 2025-12-04T19:07:46.813Z
Updated: 2026-02-25T19:26:56.481Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-6638 |
vulnerable | 2026-06-03 14:58:03.739179 |
Integer Overflow Vulnerability Reading TDMS Files in LabVIEW
MEDIUM (5.5)
An integer overflow vulnerability due to improper input validation when reading TDMS files in LabVIEW may result in an infinite loop. Successful exploitation requires an attacker to provide a user with a specially crafted TDMS file. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
Published: 2024-07-22T19:55:23.548Z
Updated: 2024-08-01T21:41:04.317Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4081 |
vulnerable | 2026-06-03 14:57:14.688147 |
Memory Corruption Due to Improper Length Check in NI LabVIEW
HIGH (7.8)
A memory corruption issue due to an improper length check in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects NI LabVIEW 2024 Q1 and prior versions.
Published: 2024-07-23T13:32:52.584Z
Updated: 2025-09-30T13:44:11.363Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4080 |
vulnerable | 2026-06-03 14:57:14.685640 |
Memory Corruption Due to Improper Length Checks in LabVIEW tdcore.dll
HIGH (7.8)
A memory corruption issue due to an improper length check in LabVIEW tdcore.dll may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
Published: 2024-07-23T13:29:55.012Z
Updated: 2025-09-29T18:55:07.333Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4079 |
vulnerable | 2026-06-03 14:57:14.679017 |
Out of Bounds Read Due to Missing Bounds Check in LabVIEW
HIGH (7.8)
An out of bounds read due to a missing bounds check in LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
Published: 2024-07-23T13:19:35.141Z
Updated: 2025-08-27T20:42:58.816Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23612 |
vulnerable | 2026-06-03 14:55:04.153825 |
Improper Error Handling Issue in LabVIEW
HIGH (7.8)
An improper error handling vulnerability in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
Published: 2024-03-11T15:19:34.788Z
Updated: 2024-10-10T20:30:00.781Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23611 |
vulnerable | 2026-06-03 14:55:04.153123 |
Out of Bounds Write Due to Missing Bounds Check in LabVIEW
HIGH (7.8)
An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
Published: 2024-03-11T15:14:22.944Z
Updated: 2024-08-28T19:57:08.855Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23610 |
vulnerable | 2026-06-03 14:55:04.152601 |
Out of Bounds Write Due to Missing Bounds Check in LabVIEW
HIGH (7.8)
An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
Published: 2024-03-11T15:12:33.108Z
Updated: 2024-08-08T15:09:09.675Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23609 |
vulnerable | 2026-06-03 14:55:04.152032 |
Improper Error Handling Issue in LabVIEW
HIGH (7.8)
An improper error handling vulnerability in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
Published: 2024-03-11T15:17:59.351Z
Updated: 2025-04-16T15:48:24.638Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23608 |
vulnerable | 2026-06-03 14:55:04.146258 |
Out of Bounds Write Due to Missing Bounds Check in LabVIEW
HIGH (7.8)
An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
Published: 2024-03-11T15:10:16.963Z
Updated: 2024-08-22T19:05:18.989Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10496 |
vulnerable | 2026-06-03 14:54:11.877503 |
Out of bounds read in BuildFontMap in fontmgr.cpp in NI LabVIEW
HIGH (7.8)
An out of bounds read due to improper input validation in BuildFontMap in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior versions.
Published: 2024-12-10T15:55:46.698Z
Updated: 2024-12-10T20:10:51.547Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10495 |
vulnerable | 2026-06-03 14:54:11.876519 |
Out of bounds read when loading the font table in fontmgr.cpp in NI LabVIEW
HIGH (7.8)
An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior versions.
Published: 2024-12-10T15:52:43.177Z
Updated: 2024-12-10T20:18:12.830Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10494 |
vulnerable | 2026-06-03 14:54:11.867612 |
Out of bounds read in HeapObjMapImpl.cpp in NI LabVIEW
HIGH (7.8)
An out of bounds read due to improper input validation in HeapObjMapImpl.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior versions.
Published: 2024-12-10T15:49:13.763Z
Updated: 2024-12-10T20:33:18.417Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-5023 |
vulnerable | 2026-06-03 14:33:20.406391 |
Details available
The ActiveX controls in the HelpAsst component in NI Help Links in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allow remote attackers to cause a denial of service by triggering the display of local .chm files.
Published: 2013-08-06T18:00:00.000Z
Updated: 2024-08-06T16:59:41.216Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-5022 |
vulnerable | 2026-06-03 14:33:20.404345 |
Details available
Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allows remote attackers to create and execute arbitrary files via a full pathname in an argument to the ExportStyle method, in conjunction with file content in the (1) Caption or (2) FormatString property value.
Published: 2013-08-06T18:00:00.000Z
Updated: 2024-08-06T16:59:41.206Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-5021 |
vulnerable | 2026-06-03 14:33:20.400190 |
Details available
Multiple absolute path traversal vulnerabilities in National Instruments cwui.ocx, as used in National Instruments LabWindows/CVI 2012 SP1 and earlier, National Instruments LabVIEW 2012 SP1 and earlier, the Data Analysis component in ABB DataManager 1 through 6.3.6, and other products allow remote attackers to create and execute arbitrary files via a full pathname in an argument to the ExportStyle method in the (1) CWNumEdit, (2) CWGraph, (3) CWBoolean, (4) CWSlide, or (5) CWKnob ActiveX control, in conjunction with file content in the (a) Caption or (b) FormatString property value.
Published: 2013-08-06T18:00:00.000Z
Updated: 2024-08-06T16:59:41.367Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.