Ni Veristand
7 CVEs affecting Ni Veristand. Latest disclosed: 2024-07-22. Critical: 3, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-6806 | Critical | 9.8 | 2024-07-22 | The NI VeriStand Gateway is missing authorization checks when an actor attempts to access Project resources. These missing checks may result in remote code ex… |
CVE-2024-6794 | Critical | 9.8 | 2024-07-22 | A deserialization of untrusted data vulnerability exists in NI VeriStand Waveform Streaming Server that may result in remote code execution. Successful exploi… |
CVE-2024-6793 | Critical | 9.8 | 2024-07-22 | A deserialization of untrusted data vulnerability exists in NI VeriStand DataLogging Server that may result in remote code execution. Successful exploitation… |
CVE-2024-6791 | High | 7.8 | 2024-07-22 | A directory path traversal vulnerability exists when loading a vsmodel file in NI VeriStand that may result in remote code execution. Successful exploitation… |
CVE-2024-6675 | High | 7.8 | 2024-07-22 | A deserialization of untrusted data vulnerability exists in NI VeriStand that may result in remote code execution. Successful exploitation requires an attacke… |
CVE-2024-6805 | High | 7.5 | 2024-07-22 | The NI VeriStand Gateway is missing authorization checks when an actor attempts to access File Transfer resources. These missing checks may result in informat… |
CVE-2023-5136 | Medium | 5.5 | 2023-11-08 | An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker could exploit this vulnerability b… |