CVE-2024-12741
CVSS V2 None
CVSS V3 None
Description
A deserialization of untrusted data vulnerability exists in NI DAQExpress that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects DAQExpress 5.1 and prior versions. Please note that DAQExpress is an EOL product and will not receive any updates.
Overview
- CVE ID
- CVE-2024-12741
- Assigner
- NI
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-12-18T19:20:41.889Z
- Last Modified Date
- 2024-12-18T19:41:59.919Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://knowledge.ni.com/KnowledgeArticleDetails?id=kA00Z000000kFD7SAM&l=en-US |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-12741 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-12741 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-12-19 13:27:39 | Added to TrackCVE |