Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-2634

Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in fontmgr may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.

Published

2025-07-23T16:15:25.620

Last Modified

2025-08-19T16:14:55.217

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses

Type: Secondary
CWE-1285

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ni	labview	≤ 2021	Yes
Application	ni	labview	2022	Yes
Application	ni	labview	2022	Yes
Application	ni	labview	2022	Yes
Application	ni	labview	2022	Yes
Application	ni	labview	2022	Yes
Application	ni	labview	2022	Yes
Application	ni	labview	2023	Yes
Application	ni	labview	2023	Yes
Application	ni	labview	2023	Yes
Application	ni	labview	2023	Yes
Application	ni	labview	2023	Yes
Application	ni	labview	2023	Yes
Application	ni	labview	2023	Yes
Application	ni	labview	2023	Yes
Application	ni	labview	2024	Yes
Application	ni	labview	2024	Yes
Application	ni	labview	2024	Yes
Application	ni	labview	2024	Yes
Application	ni	labview	2024	Yes
Application	ni	labview	2024	Yes
Application	ni	labview	2025	Yes
Application	ni	labview	2025	Yes
Application	ni	labview	2025	Yes

References

https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/out-of-bounds-read-vulnerabilities-in-ni-labview.html Vendor Advisory ([email protected])