CVE-2024-6791

Summary

CVE-2024-6791 is a newly disclosed vulnerability affecting NI VeriStand. This issue involves a directory path traversal vulnerability that can be exploited when loading a .vsmodel file. An attacker who successfully exploits this weakness can execute remote code. The susceptible versions include VeriStand 2024 Q2 and older releases. Users are advised to take precautions against opening untrusted .vsmodel files to mitigate the risk of potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.