Memory Corruption Vulnerabilities in NI LabVIEW

NI strongly recommends upgrading the affected software to mitigate these vulnerabilities.  Refer to the Affected Products section for information on upgrading these products. 

• CVE-2026-32862 – 7.8 - CVSS:3.1 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
• CVE-2026-32862 – 8.5 - CVSS:4.0 AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
  
  
• CVE-2026-32863 – 7.8 - CVSS:3.1 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
• CVE-2026-32863 – 8.5 - CVSS:4.0 AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
  
  
• CVE-2026-32864 – 7.8 - CVSS:3.1 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
• CVE-2026-32864 – 8.5 - CVSS:4.0 AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

At NI, we view the security of our products as an important part of our commitment to our customers.  Go to ni.com/security to stay informed and act upon security alerts and issues.

NI would like to thank Michael Heinzl for reporting this issue and working with us on coordinated disclosure.

• CVE-2026-32862 - National Vulnerability Database
• CVE-2026-32863 - National Vulnerability Database
• CVE-2026-32864 - National Vulnerability Database
• CWE-787 – Out-of-bounds Write
• CWE-125 – Out-of-bounds Read