NI

National Instruments (NI) has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but no authentication, allowing an unauthenticated attacker with local access to compromise system confidentiality, integrity, and availability. The vulnerability was reported in February 2026 with a June 2026 vendor patch deadline. Security teams should monitor for exploitation attempts targeting NI software installations and prepare patch deployment procedures for the expected vendor update.