This page provides information about published security advisories for NI software in 2022. Click the link in the Info Code column to obtain more information or to download the update.
| Name | Type | Description | Info Code |
|---|---|---|---|
NI Security Update for CVE-2022-27237 | Software | NI has discovered a reflected cross-site scripting (XSS) vulnerability in a NI Web Server component installed with several NI products. An attacker could exploit this vulnerability by getting a user to open a specially crafted URL which executes arbitrary JavaScript code. |
| Name | Type | Description | Info Code |
|---|---|---|---|
NI Security Update for CVE-2022-35415 | Software | NI has discovered an improper input validation in NI System Configuration 21.5 and prior versions that may allow a privileged user to potentially enable escalation of privilege via local access. |
| Name | Type | Description | Info Code |
|---|---|---|---|
NI Security Update for CVE-2022-42718 | Software | Incorrect default permissions in the installation folder for NI LabVIEW Command Line Interface (CLI) may allow an authenticated user to potentially enable escalation of privilege via local access. |