CVE-2024-23609

HIGH Year: 2024
CVSS v3 Score
7.8
High
Weakness Type
CWE-1285
View all →

Vulnerability Description

An improper error handling vulnerability in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

Related Vulnerabilities

CVE-2022-21821

HIGH
CVSS:7.8(High)

NVIDIA CUDA Toolkit SDK contains an integer overflow vulnerability in cuobjdump.To exploit this vulnerability, a remote attacker would require a local user to download a specially crafted, corrupted f...

CWE-12852022

CVE-2024-10494

HIGH
CVSS:7.8(High)

An out of bounds read due to improper input validation in HeapObjMapImpl.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker ...

CWE-12852024

CVE-2024-10495

HIGH
CVSS:7.8(High)

An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation ...

CWE-12852024

CVE-2024-10496

HIGH
CVSS:7.8(High)

An out of bounds read due to improper input validation in BuildFontMap in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an ...

CWE-12852024

CVE-2024-23612

HIGH
CVSS:7.8(High)

An improper error handling vulnerability in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability ...

CWE-12852024

CVE-2020-25241

HIGH
CVSS:7.5(High)

A vulnerability has been identified in SIMATIC MV400 family (All Versions < V7.0.6). The underlying TCP stack of the affected products does not correctly validate the sequence number for incoming TCP ...

CWE-12852020