- Description
- An out of bounds read due to improper input validation in BuildFontMap in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior versions.
- Source
- security@ni.com
- NVD status
- Received
CVSS 4.0
- Type
- Secondary
- Base score
- 8.4
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
- security@ni.com
- CWE-1285
- Hype score
- Not currently trending
CVE-2024-10496 Out of Bounds Read Allows Arbitrary Code Execution in NI LabVIEW A problem in NI LabVIEW related to improper input checks in BuildFontMap in fontmgr.cpp may lead to an out of bounds read. This coul... https://t.co/yW0kd6PRXx
@VulmonFeeds
10 Dec 2024
44 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
CVE-2024-10496 An out of bounds read due to improper input validation in BuildFontMap in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. S… https://t.co/smX1tizFMJ
@CVEnew
10 Dec 2024
262 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
[CVE-2024-10496: HIGH] LabVIEW vulnerability in BuildFontMap could allow arbitrary code execution. Attackers may exploit by sharing manipulated VI files. Update software to version LabVIEW 2024 Q3 to fix.#cybersecurity,#vulnerability https://t.co/F9FhzoaKNZ https://t.co/ynPOn6jrz
@CveFindCom
10 Dec 2024
40 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes