Skip to main content

NI grpc-device EUVDEUVD-2026-38028

| CVE-2026-48140 HIGH
Incorrect Type Conversion or Cast (CWE-704)
2026-06-19 NI
7.1
CVSS 4.0 · Vendor: NI
Share

Severity by source

Vendor (NI) PRIMARY
7.1 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
6.5 MEDIUM

Network-reachable gRPC RPC (AV:N) with trivial crafted payload (AC:L) requires authenticated low-privileged caller (PR:L), no UI, scope unchanged, availability-only impact from server crash.

3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (NI).

CVSS VectorVendor: NI

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

3
Analysis Generated
Jun 19, 2026 - 14:27 vuln.today
Severity Changed
Jun 19, 2026 - 14:22 NVD
MEDIUM HIGH
CVSS changed
Jun 19, 2026 - 14:22 NVD
6.5 (MEDIUM) 7.1 (HIGH)

DescriptionCVE.org

There is an unchecked enum cast vulnerability in NI grpc-device BeginSidebandStream that may allow an attacker to trigger invalid enum states and undefined behavior, potentially resulting in a denial of service. Successful exploitation requires an attacker to supply a specially crafted message containing an out-of-range value. This affects NI grpc-device 2.17.0 and prior versions.

AnalysisAI

Denial of service in NI grpc-device 2.17.0 and earlier allows an authenticated remote attacker to crash or destabilize the gRPC server by sending a crafted BeginSidebandStream message containing an out-of-range enum value. The unchecked cast triggers undefined behavior in the server process, with no public exploit identified at time of analysis. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain low-privileged gRPC credentials
Delivery
Reach grpc-device listener on test network
Exploit
Send crafted BeginSidebandStream with out-of-range enum
Execution
Trigger unchecked enum cast and undefined behavior
Persist
Crash grpc-device server process
Impact
Deny instrument access to all clients

Vulnerability AssessmentAI

Exploitation Exploitation requires network reachability to the NI grpc-device server's gRPC listener and low-privileged authentication to invoke the BeginSidebandStream RPC (CVSS PR:L), plus the ability to craft a protobuf message with an integer value outside the declared enum range for the sideband-stream parameter. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 vector AV:N/AC:L/AT:N/PR:L/UI:N with VA:H and VC:N/VI:N indicates a low-complexity network-reachable denial of service requiring some level of authentication (PR:L), scoring 7.1. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has obtained low-privileged gRPC credentials - for example a shared lab service account or a compromised engineering workstation on the test network - connects to the grpc-device server and issues a BeginSidebandStream call with a protobuf field set to an integer outside the defined enum range. The unchecked cast yields undefined behavior in the server's dispatch logic, crashing the grpc-device process and taking down all instrument control sessions for connected clients. …
Remediation Upgrade NI grpc-device to a version later than 2.17.0 per the NI security bulletin at https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/2026/multiple-vulnerabilities-in-ni-grpc-device-server.html and the upstream advisory at https://github.com/ni/grpc-device/security/advisories/GHSA-prfr-q8h3-mqxv; the input data lists patch availability but does not pin a single fixed version, so consult those advisories for the exact build to deploy (patch available per vendor advisory). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all systems running NI grpc-device 2.17.0 or earlier and document network access paths to these services. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-38028 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy