- Description
- An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior versions.
- Source
- security@ni.com
- NVD status
- Received
CVSS 4.0
- Type
- Secondary
- Base score
- 8.4
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
- security@ni.com
- CWE-1285
- Hype score
- Not currently trending
CVE-2024-10495 Out of Bounds Read Leading to Code Execution in NI LabVIEW In NI LabVIEW, there's an out of bounds read issue in fontmgr.cpp when loading the font table. This happens due to improper input checks. ... https://t.co/7nfSOOEBXR
@VulmonFeeds
10 Dec 2024
47 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-10495 An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code e… https://t.co/UMfYqCqNcd
@CVEnew
10 Dec 2024
262 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2024-10495: HIGH] LabVIEW 2024 Q3 and below are vulnerable to an out-of-bounds read in fontmgr.cpp, posing risk of data exposure or code execution via a crafted VI. #CyberSecurity#cybersecurity,#vulnerability https://t.co/GHFrFe7jeo https://t.co/lKgCEz2QCL
@CveFindCom
10 Dec 2024
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes