Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

NI — Vulnerabilities & Security Advisories 63

Browse all 63 CVE security advisories affecting NI. AI-powered Chinese analysis, POCs, and references for each vulnerability.

NI develops hardware and software for test, measurement, and control applications, primarily serving engineering and scientific sectors. Its software ecosystem, including LabVIEW and TestStand, facilitates complex data acquisition and automated testing workflows. Historically, the platform has exhibited vulnerabilities ranging from remote code execution and buffer overflows to cross-site scripting and privilege escalation flaws. These issues often stem from legacy codebases and complex integration points within its extensive library of drivers and utilities. While no catastrophic, widespread breaches have defined its public history, the high number of recorded CVEs indicates persistent security challenges in maintaining robust defenses across diverse industrial environments. The company generally responds to disclosures through timely patches, yet the breadth of its product portfolio necessitates rigorous configuration management by users to mitigate risks associated with outdated components or misconfigured systems.

Top products by NI: LabVIEW Circuit Design Suite VeriStand SystemLink Server FlexLogger MeasurementLink System Configuration TopoGrafix DataPlugin for GPX IO Trace Tool DAQExpress Vision Development Module G Web Development Software Vision Builder AI
CVE IDTitleCVSSSeverityPublished
CVE-2025-2629 DLL Hijacking Vulnerability in NI LabVIEW When Loading NI Error Reporting — LabVIEWCWE-427 7.3 High2025-04-09
CVE-2025-2449 NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability — FlexLoggerCWE-22 7.8 -2025-03-18
CVE-2025-2450 NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability — Vision Builder AICWE-356 7.8 -2025-03-18
CVE-2024-12742 Deserialization of Untrusted Data Vulnerability in NI G Web Development Software — G Web Development SoftwareCWE-502 7.8 High2025-03-06
CVE-2024-12740 Dependency on Vulnerable Third-Party Component exposes Vulnerabilities in NI Vision Software — Vision Development ModuleCWE-1395 7.8 High2025-01-27
CVE-2024-12741 Deserialization Of Untrusted Data Vulnerability In NI DAQExpress Project File — DAQExpressCWE-502 7.8 High2024-12-18
CVE-2024-10496 Out of bounds read in BuildFontMap in fontmgr.cpp in NI LabVIEW — LabVIEWCWE-1285 7.8 High2024-12-10
CVE-2024-10495 Out of bounds read when loading the font table in fontmgr.cpp in NI LabVIEW — LabVIEWCWE-1285 7.8 High2024-12-10
CVE-2024-10494 Out of bounds read in HeapObjMapImpl.cpp in NI LabVIEW — LabVIEWCWE-1285 7.8 High2024-12-10
CVE-2024-4081 Memory Corruption Due to Improper Length Check in NI LabVIEW — LabVIEWCWE-787 7.8 High2024-07-23
CVE-2024-4080 Memory Corruption Due to Improper Length Checks in LabVIEW tdcore.dll — LabVIEWCWE-787 7.8 High2024-07-23
CVE-2024-4079 Out of Bounds Read Due to Missing Bounds Check in LabVIEW — LabVIEWCWE-125 7.8 High2024-07-23
CVE-2024-5602 Stack-based Buffer Overflow Vulnerability in NI I/O Trace Tool — IO Trace ToolCWE-121 7.8 High2024-07-23
CVE-2024-6806 Missing Authorization Checks In NI VeriStand Gateway For Project Resources — VeriStandCWE-862 9.8 Critical2024-07-22
CVE-2024-6805 Missing Authorization Checks in NI VeriStand Gateway for File Transfer Resources — VeriStandCWE-862 7.5 High2024-07-22
CVE-2024-6794 Deserialization of Untrusted Data in NI VeriStand Waveform Streaming Server — VeriStandCWE-502 9.8 Critical2024-07-22
CVE-2024-6793 Deserialization of Untrusted Data in NI VeriStand DataLogging Server — VeriStandCWE-502 9.8 Critical2024-07-22
CVE-2024-6791 Directory Path Traversal Vulnerability in NI VeriStand with vsmodel Files — VeriStandCWE-22 7.8 High2024-07-22
CVE-2024-6675 Deserialization of Untrusted Data Vulnerability in NI VeriStand Project File — VeriStandCWE-502 7.8 High2024-07-22
CVE-2024-6638 Integer Overflow Vulnerability Reading TDMS Files in LabVIEW — LabVIEWCWE-190 5.5 Medium2024-07-22
CVE-2024-6121 NI SystemLink Server Ships Out of Date Redis Version — SystemLink ServerCWE-1395 7.8 High2024-07-22
CVE-2024-6122 Incorrect Default Directory Permissions for NI SystemLink Redis Service — SystemLink ServerCWE-276 5.5 Medium2024-07-22
CVE-2024-4044 Deserialization of Untrusted Data Vulnerability in FlexLogger and InstrumentStudio — FlexLoggerCWE-502 7.8 High2024-05-10
CVE-2024-23612 Improper Error Handling Issue in LabVIEW — LabVIEWCWE-1285 7.8 High2024-03-11
CVE-2024-23609 Improper Error Handling Issue in LabVIEW — LabVIEWCWE-1285 7.8 High2024-03-11
CVE-2024-23611 Out of Bounds Write Due to Missing Bounds Check in LabVIEW — LabVIEWCWE-787 7.8 High2024-03-11
CVE-2024-23610 Out of Bounds Write Due to Missing Bounds Check in LabVIEW — LabVIEWCWE-787 7.8 High2024-03-11
CVE-2024-23608 Out of Bounds Write Due to Missing Bounds Check in LabVIEW — LabVIEWCWE-787 7.8 High2024-03-11
CVE-2024-1156 NI SystemLink Server 安全漏洞 — SystemLink ServerCWE-276 7.8 High2024-02-20
CVE-2024-1155 Incorrect permissions for shared NI SystemLink Elixir based services — SystemLink ServerCWE-276 7.8 High2024-02-20

This page lists every published CVE security advisory associated with NI. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.