Shodan
Vulnerabilities
Vulnerable Software
Ni:  >> Labview  >> 2014  Security Vulnerabilities
CVE-2024-6638
An integer overflow vulnerability due to improper input validation when reading TDMS files in LabVIEW may result in an infinite loop. Successful exploitation requires an attacker to provide a user with a specially crafted TDMS file. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-07-22
CVE-2024-23609
An improper error handling vulnerability in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
CVSS Score
7.8
EPSS Score
0.004
Published
2024-03-11
CVE-2024-23610
An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
CVSS Score
7.8
EPSS Score
0.014
Published
2024-03-11
CVE-2024-23611
An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
CVSS Score
7.8
EPSS Score
0.011
Published
2024-03-11
CVE-2024-23612
An improper error handling vulnerability in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
CVSS Score
7.8
EPSS Score
0.004
Published
2024-03-11
CVE-2024-23608
An out of bounds write due to a missing bounds check in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.
CVSS Score
7.8
EPSS Score
0.014
Published
2024-03-11
CVE-2017-2779
An exploitable memory corruption vulnerability exists in the RSRC segment parsing functionality of LabVIEW 2017, LabVIEW 2016, LabVIEW 2015, and LabVIEW 2014. A specially crafted Virtual Instrument (VI) file can cause an attacker controlled looping condition resulting in an arbitrary null write. An attacker controlled VI file can be used to trigger this vulnerability and can potentially result in code execution.
CVSS Score
7.5
EPSS Score
0.007
Published
2017-09-05


Products
Pricing
Contact Us

Shodan ® - All rights reserved