← voltar
CVE-2025-2632

Out of Bounds Write Vulnerability in NI LabVIEW reading CPU info from cache

CVSS 8.5 HIGHEPSS 0.2%CWE-787
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 8.5EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
09 abr 2025Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW reading CPU info from cache that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
NI · LabVIEW

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/out-of-bounds-write-vulnerabilities-in-ni-labview.html