CVE-2024-4044: Deserialization of Untrusted Data Vulnerability in FlexLogger and InstrumentStudio

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-4044

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Deserialization of Untrusted Data Vulnerability in FlexLogger and InstrumentStudio

Source: NVD (National Vulnerability Database)

Vulnerability Description

A deserialization of untrusted data vulnerability exists in common code used by FlexLogger and InstrumentStudio that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects NI FlexLogger 2024 Q1 and prior versions as well as NI InstrumentStudio 2024 Q1 and prior versions.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

可信数据的反序列化

Source: NVD (National Vulnerability Database)

Vulnerability Title

NI InstrumentStudio 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

NI InstrumentStudio是NI公司的一款应用软件，提供交互式 PXI 测量的集成方法、监控和调试测试系统的能力。 NI FlexLogger 2024 Q1版本及之前版本、NI InstrumentStudio 2024 Q1版本及之前版本存在代码问题漏洞。攻击者利用该漏洞可以远程执行代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
NI	FlexLogger	0 ~ 24.1	-
NI	InstrumentStudio	0 ~ 24.1	-

II. Public POCs for CVE-2024-4044

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2024-4044

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same product: FlexLogger

CVE-2025-2449
NI FlexLogger usiReg URI File Parsing Directory Traversal Re

Same vendor: NI

Same weakness: CWE-502

V. Comments for CVE-2024-4044

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2024-4044

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2024-4044

III. Intelligence Information for CVE-2024-4044

IV. Related Vulnerabilities

V. Comments for CVE-2024-4044

Leave a comment