CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-4570

An improper access restriction in NI MeasurementLink Python services could allow an attacker on an adjacent network to reach services exposed on localhost. These services were previously thought to be unreachable outside of the node. This affects measurement plug-ins written in Python using version 1.1.0 of the ni-measurementlink-service Python package and all previous versions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.2%

CVSS Severity

CVSS v3 Score 8.8

References

https://www.ni.com/en/support/documentation/supplemental/23/improper-restriction-in-ni-measurementlink-python-services.html
https://www.ni.com/en/support/documentation/supplemental/23/improper-restriction-in-ni-measurementlink-python-services.html

Products affected by CVE-2023-4570

Ni » Measurementlink » Version: 1.0.0

cpe:2.3:a:ni:measurementlink:1.0.0
Ni » Measurementlink » Version: 1.0.1

cpe:2.3:a:ni:measurementlink:1.0.1
Ni » Measurementlink » Version: 1.1.0

cpe:2.3:a:ni:measurementlink:1.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-4570

Products

Pricing

Contact Us