Vulnerability Details CVE-2023-4601
A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and/or arbitrary code execution. Successful exploitation requires that an attacker can provide a specially crafted response. This affects NI System Configuration 2023 Q3 and all previous versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.4%
CVSS Severity
CVSS v3 Score 8.1
References
Products affected by CVE-2023-4601
-
cpe:2.3:a:ni:system_configuration:14.0
-
cpe:2.3:a:ni:system_configuration:14.0.1
-
cpe:2.3:a:ni:system_configuration:14.5
-
cpe:2.3:a:ni:system_configuration:15.0
-
cpe:2.3:a:ni:system_configuration:15.3
-
cpe:2.3:a:ni:system_configuration:16.0
-
cpe:2.3:a:ni:system_configuration:16.0.1
-
cpe:2.3:a:ni:system_configuration:17.0
-
cpe:2.3:a:ni:system_configuration:17.5
-
cpe:2.3:a:ni:system_configuration:18.0
-
cpe:2.3:a:ni:system_configuration:18.1
-
cpe:2.3:a:ni:system_configuration:18.5
-
cpe:2.3:a:ni:system_configuration:19.0
-
cpe:2.3:a:ni:system_configuration:19.5
-
cpe:2.3:a:ni:system_configuration:20.0
-
cpe:2.3:a:ni:system_configuration:20.5
-
cpe:2.3:a:ni:system_configuration:2022
-
cpe:2.3:a:ni:system_configuration:2023
-
cpe:2.3:a:ni:system_configuration:21.0
-
cpe:2.3:a:ni:system_configuration:21.5
-
cpe:2.3:a:ni:system_configuration:5.5.1
-
cpe:2.3:a:ni:system_configuration:5.6
-
cpe:2.3:o:microsoft:windows:-