CVE-2024-23608

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 11, 2024

Updated: Mar 12, 2024

CWE ID 787

Summary

CVE-2024-23608 is a newly disclosed vulnerability in LabVIEW. This issue involves a missing bounds check that allows for out-of-bounds writing, potentially resulting in remote code execution. An attacker can exploit this by crafting a specially designed VI (Virtual Instrument) and deceiving a user into opening it. This vulnerability affects LabVIEW versions prior to Q1 2024.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uMfEmA
https://www.cve.org/CVERecord?id=CVE-2024-23608
https://nvd.nist.gov/vuln/detail/CVE-2024-23608

Back to Vulnerability Database

CVE-2024-23608

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations