CVE-2024-6791

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 22, 2024
Updated: Jul 24, 2024
CWE ID 22

Summary

CVE-2024-6791 is a newly disclosed vulnerability affecting NI VeriStand. This issue involves a directory path traversal vulnerability that can be exploited when loading a .vsmodel file. An attacker who successfully exploits this weakness can execute remote code. The susceptible versions include VeriStand 2024 Q2 and older releases. Users are advised to take precautions against opening untrusted .vsmodel files to mitigate the risk of potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share