Known Vulnerabilities for products from NI
Listed below are 20 of the newest known vulnerabilities associated with the vendor "NI".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by NI can be found at device.report : NI
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-48141 json | There is a memory leak in NI grpc-device BeginSidebandStream that may result in denial of service due to memory exhaustion. ... | Not Provided | 2026-06-19 | 2026-06-25 |
| CVE-2026-48140 json | There is an unchecked enum cast vulnerability in NI grpc-device BeginSidebandStream that may allow an attacker to trigger inv... | Not Provided | 2026-06-19 | 2026-06-25 |
| CVE-2026-48139 json | There is a NULL pointer dereference vulnerability in NI grpc-device in the data moniker service that may allow an attacker to... | Not Provided | 2026-06-19 | 2026-06-25 |
| CVE-2026-48138 json | There is an out-of-bounds read vulnerability in the NI grpc-device streaming API due to a missing bounds check that may resul... | Not Provided | 2026-06-19 | 2026-06-25 |
| CVE-2026-48137 json | There is an untrusted pointer dereference vulnerability in the NI grpc-device sideband streaming API that may allow an attack... | Not Provided | 2026-06-19 | 2026-06-25 |
| CVE-2026-32864 json | There is a memory corruption vulnerability due to an out-of-bounds read in mgcore_SH_25_3!aligned_free() in NI LabVIEW. Thi... | Not Provided | 2026-04-07 | 2026-04-13 |
| CVE-2026-32863 json | There is a memory corruption vulnerability due to an out-of-bounds read in sentry_transaction_context_set_operation() in NI L... | Not Provided | 2026-04-07 | 2026-04-13 |
| CVE-2026-32862 json | There is a memory corruption vulnerability due to an out-of-bounds write in ResFileFactory::InitResourceMgr() in NI LabVIEW.�... | Not Provided | 2026-04-07 | 2026-04-13 |
| CVE-2026-32861 json | There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVCLASS file in NI LabVIEW.... | Not Provided | 2026-04-07 | 2026-04-13 |
| CVE-2026-32860 json | There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVLIB file in NI LabVIEW. ... | Not Provided | 2026-04-07 | 2026-04-13 |
| CVE-2026-9143 json | There is an incorrect conversion between numeric types vulnerability in NI grpc-device due to missing range checks in CodeGe... | Not Provided | 2026-06-19 | 2026-06-25 |
| CVE-2026-9142 json | There is an insecure default credentials vulnerability in NI grpc-device when TLS configuration is not present and the server... | Not Provided | 2026-06-19 | 2026-06-25 |
| CVE-2026-8036 json | Improper input validation in NI-PAL may allow a local authenticated user to access arbitrary system memory, potentially leadi... | Not Provided | 2026-06-02 | 2026-06-05 |
| CVE-2026-8035 json | Improper input validation in the NI-PAL kernel driver may allow a local authenticated user to cause a denial of service by tr... | Not Provided | 2026-06-02 | 2026-06-05 |
| CVE-2023-5136 json | An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker ... | 5.5 - MEDIUM | 2023-11-08 | 2023-11-15 |
| CVE-2023-4601 json | A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and... | 9.8 - CRITICAL | 2023-10-18 | 2023-10-28 |
| CVE-2023-4570 json | An improper access restriction in NI MeasurementLink Python services could allow an attacker on an adjacent network to reach ... | 8.8 - HIGH | 2023-10-05 | 2023-10-12 |
| CVE-2022-42718 json | Incorrect default permissions in the installation folder for NI LabVIEW Command Line Interface (CLI) may allow an authenticat... | 7.8 - HIGH | 2022-12-01 | 2022-12-06 |
| CVE-2022-35415 json | An improper input validation in NI System Configuration Manager before 22.5 may allow a privileged user to potentially enable... | 7.8 - HIGH | 2022-09-16 | 2022-09-17 |
| CVE-2022-27237 json | There is a cross-site scripting (XSS) vulnerability in an NI Web Server component installed with several NI products. Dependi... | 6.1 - MEDIUM | 2022-04-21 | 2022-05-03 |
Known software with vulnerabilities from NI
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Ni | Compactrio | - |
| Operating System | Ni | Compactrio Firmware | 20.5 |
| Application | Ni | Diadem | - |
| Application | Ni | Labview | - |
| Application | Ni | Labwindows | - |
| Application | Ni | Lookout | 6.5 |
| Application | Ni | Measurementstudio | - |
| Application | Ni | Multisim | - |
| Application | Ni | Teststand | - |