CVE-2025-7849
A memory corruption vulnerability due to improper error handling when a VILinkObj is null exists in NI LabVIEW that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI LabVIEW 2025 Q1 and prior versions.
| Software | From | Fixed in |
|---|---|---|
| ni / labview | 2022-q3 | 2022-q3.x |
| ni / labview | 2024-q1 | 2024-q1.x |
| ni / labview | 2022-q1 | 2022-q1.x |
| ni / labview | 2023-q3 | 2023-q3.x |
| ni / labview | 2023-q1 | 2023-q1.x |
| ni / labview | 2023-q3_patch2 | 2023-q3_patch2.x |
| ni / labview | - | 2021.x |
| ni / labview | 2022-q3_patch1 | 2022-q3_patch1.x |
| ni / labview | 2022-q3_patch2 | 2022-q3_patch2.x |
| ni / labview | 2022-q3_patch4 | 2022-q3_patch4.x |
| ni / labview | 2023-q3_patch1 | 2023-q3_patch1.x |
| ni / labview | 2023-q3_patch3 | 2023-q3_patch3.x |
| ni / labview | 2023-q3_patch4 | 2023-q3_patch4.x |
| ni / labview | 2023-q3_patch5 | 2023-q3_patch5.x |
| ni / labview | 2024-q1_patch1 | 2024-q1_patch1.x |
| ni / labview | 2024-q3 | 2024-q3.x |
| ni / labview | 2024-q3_patch1 | 2024-q3_patch1.x |
| ni / labview | 2024-q3_patch2 | 2024-q3_patch2.x |
| ni / labview | 2022-q3_patch5 | 2022-q3_patch5.x |
| ni / labview | 2023-q3_patch6 | 2023-q3_patch6.x |
| ni / labview | 2024-q3_patch3 | 2024-q3_patch3.x |
| ni / labview | 2025-q1 | 2025-q1.x |
| ni / labview | 2025-q1_patch1 | 2025-q1_patch1.x |
| ni / labview | 2025-q1_patch2 | 2025-q1_patch2.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime