CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-5022

Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allows remote attackers to create and execute arbitrary files via a full pathname in an argument to the ExportStyle method, in conjunction with file content in the (1) Caption or (2) FormatString property value.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.017

EPSS Ranking 81.0%

CVSS Severity

CVSS v2 Score 10.0

References

Products affected by CVE-2013-5022

Ni » Labview » Version: N/A

cpe:2.3:a:ni:labview:-
Ni » Labview » Version: 16.0.0.49152

cpe:2.3:a:ni:labview:16.0.0.49152
Ni » Labview » Version: 2012

cpe:2.3:a:ni:labview:2012
Ni » Labwindows » Version: N/A

cpe:2.3:a:ni:labwindows:-
Ni » Labwindows » Version: 2009

cpe:2.3:a:ni:labwindows:2009
Ni » Labwindows » Version: 2010

cpe:2.3:a:ni:labwindows:2010
Ni » Labwindows » Version: 2012

cpe:2.3:a:ni:labwindows:2012
Ni » Labwindows » Version: 8.5

cpe:2.3:a:ni:labwindows:8.5
Ni » Labwindows » Version: 9.0

cpe:2.3:a:ni:labwindows:9.0
Ni » Measurementstudio » Version: N/A

cpe:2.3:a:ni:measurementstudio:-
Ni » Measurementstudio » Version: 2013

cpe:2.3:a:ni:measurementstudio:2013
Ni » Teststand » Version: N/A

cpe:2.3:a:ni:teststand:-
Ni » Teststand » Version: 2012

cpe:2.3:a:ni:teststand:2012

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-5022

Products

Pricing

Contact Us