Security Advisory

CVE-2025-7849

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-07-29 21:27:20

Last updated 2026-02-26 17:50:11

Assigner NI

State PUBLISHED

Description

A memory corruption vulnerability due to improper error handling when a VILinkObj is null exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.

← Browse all CVEs View on cve.org ↗