Skip to main content

Labview CVE-2026-32861

| EUVDEUVD-2026-19901 HIGH
Out-of-bounds Write (CWE-787)
2026-04-07 NI GHSA-8q47-ghm9-m53q
8.5
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
8.5 HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
P
Scope
X

Lifecycle Timeline

6
Analysis Updated
Apr 16, 2026 - 06:02 EUVD-patch-fix
executive_summary
Re-analysis Queued
Apr 16, 2026 - 05:29 backfill_euvd_patch
patch_released
Patch available
Apr 16, 2026 - 05:29 EUVD
26.1.1,23.3.9,24.3.6
EUVD ID Assigned
Apr 07, 2026 - 20:16 euvd
EUVD-2026-19901
Analysis Generated
Apr 07, 2026 - 20:16 vuln.today
CVE Published
Apr 07, 2026 - 19:46 nvd
HIGH 8.5

DescriptionCVE.org

There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVCLASS file in NI LabVIEW.  This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .lvclass file. This vulnerability affects NI LabVIEW 2026 Q1 (26.1.0) and prior versions.

AnalysisAI

Memory corruption via out-of-bounds write in NI LabVIEW allows arbitrary code execution and information disclosure when processing maliciously crafted .lvclass files. Affects LabVIEW 2026 Q1 (26.1.0) and all prior versions. Attack requires local access and user interaction to open the weaponized file (CVSS AV:L/UI:P). No public exploit identified at time of analysis, though the vendor advisory confirms the vulnerability and provides remediation guidance.

Technical ContextAI

This vulnerability stems from improper bounds checking during LVCLASS file parsing in National Instruments LabVIEW, a visual programming environment widely used in industrial automation, test and measurement systems, and research applications. The flaw is classified as CWE-787 (Out-of-bounds Write), occurring when LabVIEW's file parser writes data beyond allocated memory boundaries while loading .lvclass files (LabVIEW class definition files used in object-oriented programming within the platform). The memory corruption can be leveraged to overwrite adjacent memory regions, potentially redirecting program execution flow to attacker-controlled code or leaking sensitive memory contents. The affected CPE indicates all versions of LabVIEW through 2026 Q1 are vulnerable, representing a broad attack surface across engineering and scientific computing environments where LabVIEW deployments are common.

RemediationAI

Apply the vendor-released security update detailed in the NI security advisory at https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/2026/lv-class-file-parsing-memory-corruption-vulnerability-in-ni-labview.html. The advisory specifies patched versions and upgrade paths for affected LabVIEW installations. As an interim mitigation where immediate patching is not feasible, implement strict controls on .lvclass file sources-users should only open class files from trusted, verified sources and avoid processing files received via email or untrusted network shares. Organizations can also deploy application whitelisting or file integrity monitoring to detect unexpected .lvclass file modifications. For air-gapped or legacy systems where upgrades are constrained, consider isolating LabVIEW workstations from untrusted network access and implementing mandatory security awareness training on the risks of opening unsolicited project files. Network segmentation can limit lateral movement if exploitation occurs in a compromised engineering workstation.

CVE-2017-2775 HIGH POC
7.5 Mar 31

An exploitable memory corruption vulnerability exists in the LvVariantUnflatten functionality in 64-bit versions of LabV

CVE-2017-2779 HIGH POC
7.5 Sep 05

An exploitable memory corruption vulnerability exists in the RSRC segment parsing functionality of LabVIEW 2017, LabVIEW

CVE-2013-5022 CRITICAL
10.0 Aug 06

Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National Instruments LabWindows

CVE-2013-5021 CRITICAL
9.3 Aug 06

Multiple absolute path traversal vulnerabilities in National Instruments cwui.ocx, as used in National Instruments LabWi

CVE-2025-2632 HIGH
8.5 Apr 09

Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW reading CPU info from cache that may res

CVE-2025-2631 HIGH
8.5 Apr 09

Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW in InitCPUInformation() that may result

CVE-2026-32864 HIGH
8.5 Apr 07

Memory corruption via out-of-bounds read in NI LabVIEW's mgcore_SH_25_3!aligned_free() function enables information disc

CVE-2026-32863 HIGH
8.5 Apr 07

Memory corruption in NI LabVIEW 26.1.0 and earlier allows local attackers to execute arbitrary code or disclose sensitiv

CVE-2026-32862 HIGH
8.5 Apr 07

Memory corruption in NI LabVIEW's ResFileFactory::InitResourceMgr() function allows arbitrary code execution or informat

CVE-2026-32860 HIGH
8.5 Apr 07

Memory corruption via out-of-bounds write in NI LabVIEW allows arbitrary code execution when processing malicious LVLIB

CVE-2024-10496 HIGH
8.4 Dec 10

An out of bounds read due to improper input validation in BuildFontMap in fontmgr.cpp in NI LabVIEW may disclose informa

CVE-2024-10495 HIGH
8.4 Dec 10

An out of bounds read due to improper input validation when loading the font table in fontmgr.cpp in NI LabVIEW may disc

Share

CVE-2026-32861 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy