A deserialization of untrusted data vulnerability exists in common code used by FlexLogger and InstrumentStudio that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects NI FlexLogger 2024 Q1 and prior versions as well as NI InstrumentStudio 2024 Q1 and prior versions.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: NI

Published:

Updated: 2024-08-01T20:26:57.269Z

Reserved: 2024-04-22T21:05:40.301Z

Link: CVE-2024-4044

cve-icon Vulnrichment

Updated: 2024-08-01T20:26:57.269Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-14T15:42:45.640

Modified: 2024-11-21T09:42:05.590

Link: CVE-2024-4044

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-07-12T15:42:27Z