SB2024030108 - Multiple vulnerabilities in National Instruments products
Published: March 1, 2024
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Incorrect default permissions (CVE-ID: CVE-2024-1156)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to incorrect default permissions within the configuration of RabbitMQ. A local user with access to the system can view contents of files and directories or modify them.
2) Incorrect default permissions (CVE-ID: CVE-2024-1155)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to incorrect default permissions within the userservices executable and TagHistorian, DocumentManager, SkylineService, ServiceRegistry components. A local user with access to the system can view contents of files and directories or modify them.
Remediation
Install update from vendor's website.
References
- https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/incorrect-permissions-for-shared-systemlink-elixir-based-service.html
- https://www.zerodayinitiative.com/advisories/ZDI-24-214/
- https://www.zerodayinitiative.com/advisories/ZDI-24-213/
- https://www.zerodayinitiative.com/advisories/ZDI-24-212/
- https://www.zerodayinitiative.com/advisories/ZDI-24-211/
- https://www.zerodayinitiative.com/advisories/ZDI-24-210/
- https://www.zerodayinitiative.com/advisories/ZDI-24-209/