HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2024-10496

CVSS 8.4v4.0pub. 2024-12-10upd. 2025-03-04

An out of bounds read due to improper input validation in BuildFontMap in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior versions.

CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Ni Labview

    APP
    Ni
    202220232024≤ 2021
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2026-32862HIGH8.5ten sam produkt

There is a memory corruption vulnerability due to an out-of-bounds write in ResFileFactory::InitResourceMgr() ...

CVE-2026-32863HIGH8.5ten sam produkt

There is a memory corruption vulnerability due to an out-of-bounds read in sentry_transaction_context_set_oper...

CVE-2026-32860HIGH8.5ten sam produkt

There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVLIB file i...

CVE-2026-32861HIGH8.5ten sam produkt

There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVCLASS file...

CVE-2026-32864HIGH8.5ten sam produkt

There is a memory corruption vulnerability due to an out-of-bounds read in mgcore_SH_25_3!aligned_free() in NI...