Search
Search Results (6 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-9143 | 1 Ni | 2 Grpc-device, Instrumentstudio | 2026-06-19 | 3.7 Low |
| There is an incorrect conversion between numeric types vulnerability in NI grpc-device due to missing range checks in CodeGen. This may silently discard high bits if a size value exceeded the target type's range. This affects NI grpc-device 2.17.0 and prior versions. | ||||
| CVE-2026-48141 | 1 Ni | 2 Grpc-device, Instrumentstudio | 2026-06-19 | 5.3 Medium |
| There is a memory leak in NI grpc-device BeginSidebandStream that may result in denial of service due to memory exhaustion. This affects NI grpc-device 2.17.0 and prior versions. | ||||
| CVE-2026-48140 | 1 Ni | 2 Grpc-device, Instrumentstudio | 2026-06-19 | 6.5 Medium |
| There is an unchecked enum cast vulnerability in NI grpc-device BeginSidebandStream that may allow an attacker to trigger invalid enum states and undefined behavior, potentially resulting in a denial of service. Successful exploitation requires an attacker to supply a specially crafted message containing an out-of-range value. This affects NI grpc-device 2.17.0 and prior versions. | ||||
| CVE-2026-48139 | 1 Ni | 2 Grpc-device, Instrumentstudio | 2026-06-19 | 7.5 High |
| There is a NULL pointer dereference vulnerability in NI grpc-device in the data moniker service that may allow an attacker to cause a denial of service by triggering a crash. Successful exploitation requires an attacker to provide an unknown value to the data moniker service. This affects NI grpc-device 2.17.0 and prior versions. | ||||
| CVE-2026-48137 | 1 Ni | 2 Grpc-device, Instrumentstudio | 2026-06-19 | 9.1 Critical |
| There is an untrusted pointer dereference vulnerability in the NI grpc-device sideband streaming API that may allow an attacker to cause an arbitrary memory dereference, potentially resulting in remote code execution. Successful exploitation requires an attacker to supply a specially crafted Moniker protobuf message. This affects NI grpc-device 2.17.0 and prior versions. | ||||
| CVE-2026-48138 | 1 Ni | 2 Grpc-device, Instrumentstudio | 2026-06-19 | 7.5 High |
| There is an out-of-bounds read vulnerability in the NI grpc-device streaming API due to a missing bounds check that may result in a denial of service. Successful exploitation requires an attacker to supply a specially crafted write request. This affects NI grpc-device 2.17.0 and prior versions. | ||||
Page 1 of 1.