Flexlogger
Approved changes feed: RSS · Atom
cpe:2.3:a:ni:flexlogger:2024:q1:*:*:*:*:*:*
part: a version: 2024 update: q1
| Vendor | Ni (3f63e577-22ce-50bf-a016-4ac0c05111ef) |
|---|---|
| Product | Flexlogger (b785101d-7592-5360-ae80-59f62b50c393) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-2449 |
vulnerable | 2026-06-03 15:00:25.512528 |
NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability
HIGH (7.8)
NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of NI FlexLogger. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of URI files by the usiReg component. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-21805.
Published: 2025-03-18T13:18:32.984Z
Updated: 2025-03-18T13:52:36.096Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4044 |
vulnerable | 2026-06-03 14:57:14.611521 |
Deserialization of Untrusted Data Vulnerability in FlexLogger and InstrumentStudio
HIGH (7.8)
A deserialization of untrusted data vulnerability exists in common code used by FlexLogger and InstrumentStudio that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects NI FlexLogger 2024 Q1 and prior versions as well as NI InstrumentStudio 2024 Q1 and prior versions.
Published: 2024-05-10T14:59:10.943Z
Updated: 2024-08-01T20:26:57.269Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.