Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Deserialization Of Untrusted Data Vulnerability In NI DAQExpress Project File
Vulnerability Description
A deserialization of untrusted data vulnerability exists in NI DAQExpress that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects DAQExpress 5.1 and prior versions. Please note that DAQExpress is an EOL product and will not receive any updates.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
可信数据的反序列化
Vulnerability Title
NI DAQExpress 安全漏洞
Vulnerability Description
NI DAQExpress(National Instruments DAQExpress)是美国国家仪器(NI)公司的一款交互式应用软件。用于快速获取、分析和呈现来自数据采集设备的数据。 NI DAQExpress存在安全漏洞,该漏洞源于包含一个不受信任数据反序列化漏洞,可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A