CVE-2024-10495

{"id": "CVE-2024-10495", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security@ni.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}], "cvssMetricV40": [{"type": "Secondary", "source": "security@ni.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.4, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "ACTIVE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "LOW", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "LOW", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2024-12-10T16:15:22.080", "references": [{"url": "https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/out-of-bounds-read-vulnerabilities-in-ni-labview-.html", "tags": ["Vendor Advisory"], "source": "security@ni.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security@ni.com", "description": [{"lang": "en", "value": "CWE-1285"}]}, {"type": "Secondary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q3 and prior versions."}, {"lang": "es", "value": "Una lectura fuera de los l\u00edmites debido a una validaci\u00f3n de entrada incorrecta al cargar la tabla de fuentes en fontmgr.cpp en NI LabVIEW puede revelar informaci\u00f3n o provocar la ejecuci\u00f3n de c\u00f3digo arbitrario. Para explotarla con \u00e9xito, es necesario que un atacante proporcione a un usuario un VI especialmente manipulado. Esta vulnerabilidad afecta a LabVIEW 2024 Q3 y versiones anteriores."}], "lastModified": "2025-03-04T18:19:12.327", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ni:labview:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "807AE6D5-8096-47A2-A47D-1A5EFC85652D", "versionEndIncluding": "2021"}, {"criteria": "cpe:2.3:a:ni:labview:2022:q1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D12D6CF-802F-47BA-ADF9-9E52C071BD7F"}, {"criteria": "cpe:2.3:a:ni:labview:2022:q3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "340F61E5-D1ED-4C29-A894-8BC5C5B90ACE"}, {"criteria": "cpe:2.3:a:ni:labview:2022:q3_patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52CC3023-4913-40BA-B74C-786F32DC7551"}, {"criteria": "cpe:2.3:a:ni:labview:2022:q3_patch2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC150E98-5889-4A65-84B8-E4871091D104"}, {"criteria": "cpe:2.3:a:ni:labview:2023:q1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7DD2022-CFB7-4F38-B459-C1AFB55B5B68"}, {"criteria": "cpe:2.3:a:ni:labview:2023:q3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18AB0B07-72FE-4861-B69D-AD2E87C5382E"}, {"criteria": "cpe:2.3:a:ni:labview:2023:q3_patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91928C9C-F094-4EE4-9FBE-2B7956D68E6F"}, {"criteria": "cpe:2.3:a:ni:labview:2023:q3_patch2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "044C4B51-C641-41F2-ACA0-834C99D63285"}, {"criteria": "cpe:2.3:a:ni:labview:2023:q3_patch3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "26EEE5E3-AD37-4832-A66C-5F8F7A478F30"}, {"criteria": "cpe:2.3:a:ni:labview:2023:q3_patch4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5DC20B17-C582-42C4-9780-5DC61B4AED91"}, {"criteria": "cpe:2.3:a:ni:labview:2024:q1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7753CCDF-BAF8-4F91-B85B-EBB2B88F6F30"}, {"criteria": "cpe:2.3:a:ni:labview:2024:q1_patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "953E8FD0-4420-4592-B696-C377D4EE0CA2"}, {"criteria": "cpe:2.3:a:ni:labview:2024:q3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D99DCCD-511E-482E-8307-24382D1B621B"}, {"criteria": "cpe:2.3:a:ni:labview:2024:q3_patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "600A4905-B888-454F-9DF6-1C09FB71DBE2"}], "operator": "OR"}]}], "sourceIdentifier": "security@ni.com"}