CVE-2024-23612

Name of the Vulnerable Software and Affected Versions LabVIEW versions 2024 Q1 and prior

Description An improper error handling issue in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI.

Recommendations For versions 2024 Q1 and prior, consider disabling the ability to open specially crafted VIs until a patch is available. Restrict access to the VI file parsing functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.