← back
CVE-2024-10494

Out of bounds read in HeapObjMapImpl.cpp in NI LabVIEW

CVSS 8.4 HIGHEPSS 0.2%CWE-1285
An out of bounds read due to improper input validation in HeapObjMapImpl.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior versions.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N
Affected products
NI · LabVIEW

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/out-of-bounds-read-vulnerabilities-in-ni-labview-.html