An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior versions.
oryginał ENCVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XNi Labview
APPNi202220232024≤ 2021
Powiązane podatności
There is a memory corruption vulnerability due to an out-of-bounds write in ResFileFactory::InitResourceMgr() ...
There is a memory corruption vulnerability due to an out-of-bounds read in sentry_transaction_context_set_oper...
There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVLIB file i...
There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVCLASS file...
There is a memory corruption vulnerability due to an out-of-bounds read in mgcore_SH_25_3!aligned_free() in NI...