There is an improper input validation in NI Configuration Manager versions prior to 22.5 that may allow a privileged user to potentially enable escalation of privilege via local access. This vulnerability is identified as CVE-2022-35415.
NI Configuration Manager is installed with many NI drivers and software products. This vulnerability applies to Windows systems only. Refer to the Mitigation Guidance section for identifying the version of NI Configuration Manager installed.
NI strongly recommends upgrading the affected software to fix against this vulnerability.