CVE-2025-12097Relative Path Traversal in Labview

CWE-23Relative Path Traversal2 documents2 sources
Severity
8.7HIGHNVD
EPSS
0.1%
top 65.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
NI Labview
Timeline
PublishedDec 4

Description

There is a relative path traversal vulnerability in the NI System Web Server that may result in information disclosure. Successful exploitation requires an attacker to send a specially crafted request to the NI System Web Server, allowing the attacker to read arbitrary files. This vulnerability existed in the NI System Web Server 2012 and prior versions. It was fixed in 2013.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Packages1 packages

CVEListV5ni/labview9.0.012.*

🔴Vulnerability Details

1
GHSA
GHSA-8h78-r452-wvwv: There is a relative path traversal vulnerability in the NI System Web Server that may result in information disclosure2025-12-04
CVE-2025-12097 — Relative Path Traversal in NI Labview | cvebase