CVE-2024-6638

CVSS V2 None CVSS V3 None

Description

An integer overflow vulnerability due to improper input validation when reading TDMS files in LabVIEW may result in an infinite loop. Successful exploitation requires an attacker to provide a user with a specially crafted TDMS file. This vulnerability affects LabVIEW 2024 Q1 and prior versions.

Overview

CVE ID
CVE-2024-6638

Assigner
NI

Vulnerability Status
PUBLISHED

Published Version
2024-07-22T19:55:23.548Z

Last Modified Date
2024-07-22T19:55:23.548Z

Weakness Enumerations

CWE	URL
CWE-190	http://cwe.mitre.org/data/definitions/190.html

References

Reference URL	Reference Tags
https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/integer-overflow-vulnerability-reading-tdms-files-in-labview.html

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-6638
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6638

History

Created	Old Value	New Value	Data Type	Notes
2024-07-23 13:11:36				Added to TrackCVE