CVE-2024-6793
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Jul 22, 2024
Updated: Jul 24, 2024
CWE ID 502
Summary
CVE-2024-6793 is a deserialization vulnerability affecting NI VeriStand DataLogging Server. This issue allows an attacker to execute arbitrary code remotely by sending a specially crafted message to the server. Successful exploitation of this vulnerability requires no user interaction and can potentially lead to serious consequences. NI VeriStand 2024 Q2 and prior versions are vulnerable to this attack. It is important for users to update their software to a patched version as soon as possible to mitigate the risk of exploitation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- VeriStand