What is CVE-2023-4570?

CVE-2023-4570 is a high-severity vulnerability in Ni Measurementlink, classified under Unprotected Alternate Channel. CVSS score: 8.8/10. Published 2023-10-05.

How severe is CVE-2023-4570?

High severity. CVSS v3 base score is 8.8 out of 10.

Vulnerability in Ni Measurementlink

CVE-2023-4570

An improper access restriction in NI MeasurementLink Python services could allow an attacker on an adjacent network to reach services exposed on localhost. These services were previously thought to be unreachable outside of the node. Thi…

EPSS: 0.001 (29.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Ni Measurementlink — versions 1.0.0

Weakness classification (CWE)

CWE-420 — Unprotected Alternate Channel

References

www.ni.com/en/support/documentation/supplemental/23/improper-restriction-in-ni-…

Frequently asked questions

What is CVE-2023-4570?: CVE-2023-4570 is a high-severity vulnerability in Ni Measurementlink, classified under Unprotected Alternate Channel. CVSS score: 8.8/10. Published 2023-10-05.
How severe is CVE-2023-4570?: High severity. CVSS v3 base score is 8.8 out of 10.