CVE-2026-9051— Authentication Bypass Vulnerability in NI SystemLink Enterprise
Possible ATT&CK Techniques 1AI
T1190 · Exploit Public-Facing ApplicationAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NI | SystemLink Enterprise | ≤ 2026-04 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-9051
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authentication Bypass Vulnerability in NI SystemLink Enterprise
Source: NVD (National Vulnerability Database)
Vulnerability Description
There is an authentication bypass vulnerability in the NI SystemLink Enterprise Dashboard application that may allow an unauthenticated remote attacker to bypass authentication controls leading to privilege escalation or information disclosure. Successful exploitation requires an attacker to send a specially crafted HTTP request. This vulnerability affects NI SystemLink Enterprise 2026-04 and prior versions.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
关键功能的认证机制缺失
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| NI | SystemLink Enterprise | 0 ~ 2026-04 | - |
II. Public POCs for CVE-2026-9051
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-9051
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-9051 (1)
IV. Related Vulnerabilities
Same vendor: NI
- CVE-2026-32864
Out-of-Bounds Read in mgcore_SH_25_3!aligned_free() - CVE-2026-32863
Out-of-Bounds Read in sentry_transaction_context_set_operati - CVE-2026-32862
Out-of-Bounds Write in ResFileFactory::InitResourceMgr() - CVE-2026-32861
Out-of-Bounds Write Vulnerability in NI LabVIEW when loading - CVE-2026-32860
Out-of-Bounds Write Vulnerability in NI LabVIEW when loading
Same weakness: CWE-306
- CVE-2026-5768
Fourth Frontier Frontier X Mobile Application, Frontier X2 M - CVE-2026-45610
WWBN AVideo plugin/LoginControl/set.json.php: 2FA toggle end - CVE-2026-49195
Predator Connect W6x: unauthenticated Debug Service - CVE-2026-8732
WP Maps Pro <= 6.1.0 - Unauthenticated Privilege Escalation - CVE-2026-46685
RustFS: Reflective CORS with credentials on S3 listener; una
V. Comments for CVE-2026-9051
No comments yet