Ni Labview vulnerabilities

CVE-2026-32861 [HIGH] CWE-787 CVE-2026-32861: There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LV There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVCLASS file in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .lvclass file. This vulnerability affects NI LabVIEW 20

CVE-2026-32863 [HIGH] CWE-125 CVE-2026-32863: There is a memory corruption vulnerability due to an out-of-bounds read in sentry_transaction_contex There is a memory corruption vulnerability due to an out-of-bounds read in sentry_transaction_context_set_operation() in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI file. This vulnerability affects NI LabVIEW 2

CVE-2026-32862 [HIGH] CWE-787 CVE-2026-32862: There is a memory corruption vulnerability due to an out-of-bounds write in ResFileFactory::InitReso There is a memory corruption vulnerability due to an out-of-bounds write in ResFileFactory::InitResourceMgr() in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI file. This vulnerability affects NI LabVIEW 2026 Q1 (

CVE-2026-32860 [HIGH] CWE-787 CVE-2026-32860: There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LV There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVLIB file in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .lvlib file. This vulnerability affects NI LabVIEW 2026 Q

CVE-2026-32864 [HIGH] CWE-125 CVE-2026-32864: There is a memory corruption vulnerability due to an out-of-bounds read in mgcore_SH_25_3!aligned_fr There is a memory corruption vulnerability due to an out-of-bounds read in mgcore_SH_25_3!aligned_free() in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI file. This vulnerability affects NI LabVIEW 2026 Q1 (26.1.

CVE-2025-64465 [HIGH] CWE-125 CVE-2025-64465: There is an out of bounds read vulnerability in NI LabVIEW in lvre!DataSizeTDR() when parsing a corr There is an out of bounds read vulnerability in NI LabVIEW in lvre!DataSizeTDR() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior

CVE-2025-64462 [HIGH] CWE-125 CVE-2025-64462: There is an out of bounds read vulnerability in NI LabVIEW in LVResFile::RGetMemFileHandle() when pa There is an out of bounds read vulnerability in NI LabVIEW in LVResFile::RGetMemFileHandle() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.

CVE-2025-64464 [HIGH] CWE-125 CVE-2025-64464: There is an out of bounds read vulnerability in NI LabVIEW in lvre!VisaWriteFromFile() when parsing There is an out of bounds read vulnerability in NI LabVIEW in lvre!VisaWriteFromFile() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and

CVE-2025-64466 [HIGH] CWE-125 CVE-2025-64466: There is an out of bounds read vulnerability in NI LabVIEW in lvre!ExecPostedProcRecPost() when pars There is an out of bounds read vulnerability in NI LabVIEW in lvre!ExecPostedProcRecPost() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3)

CVE-2025-64468 [HIGH] CWE-416 CVE-2025-64468: There is a use-after-free vulnerability in sentry!sentry_span_set_data() when parsing a corrupted VI There is a use-after-free vulnerability in sentry!sentry_span_set_data() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and prior version

CVE-2025-64469 [HIGH] CWE-121 CVE-2025-64469: There is a stack-based buffer overflow vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry() There is a stack-based buffer overflow vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025

CVE-2025-64463 [HIGH] CWE-125 CVE-2025-64463: There is an out of bounds read vulnerability in NI LabVIEW in LVResource::DetachResource() when pars There is an out of bounds read vulnerability in NI LabVIEW in LVResource::DetachResource() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3)

CVE-2025-64461 [HIGH] CWE-787 CVE-2025-64461: There is an out of bounds write vulnerability in NI LabVIEW in mgocre_SH_25_3!RevBL() when parsing a There is an out of bounds write vulnerability in NI LabVIEW in mgocre_SH_25_3!RevBL() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.3) and

CVE-2025-64467 [HIGH] CWE-125 CVE-2025-64467: There is an out of bounds read vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry() when pa There is an out of bounds read vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry() when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q3 (25.

CVE-2025-12097 [HIGH] CWE-23 CVE-2025-12097: There is a relative path traversal vulnerability in the NI System Web Server that may result in info There is a relative path traversal vulnerability in the NI System Web Server that may result in information disclosure. Successful exploitation requires an attacker to send a specially crafted request to the NI System Web Server, allowing the attacker to read arbitrary files. This vulnerability existed in the NI System Web Server 2012 and prior version

CVE-2025-7848 [HIGH] CWE-1285 CVE-2025-7848: A memory corruption vulnerability due to improper input validation in lvpict.cpp exists in NI LabVIE A memory corruption vulnerability due to improper input validation in lvpict.cpp exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.

CVE-2025-7849 [HIGH] CWE-1285 CVE-2025-7849: A memory corruption vulnerability due to improper error handling when a VILinkObj is null exists in A memory corruption vulnerability due to improper error handling when a VILinkObj is null exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.

CVE-2025-7361 [HIGH] CWE-94 CVE-2025-7361: A code injection vulnerability due to an improper initialization check exists in NI LabVIEW that may A code injection vulnerability due to an improper initialization check exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI using a CIN node. This vulnerability affects 32-bit NI LabVIEW 2025 Q1 and prior versions. LabVIEW 64-bit versions do not support

CVE-2025-2634 [HIGH] CWE-1285 CVE-2025-2634: Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in fontmgr may result Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in fontmgr may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.

CVE-2025-2633 [HIGH] CWE-1285 CVE-2025-2633: Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in lvre!UDecStrToNum Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in lvre!UDecStrToNum that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.