HIGH
National Instruments
CVE published 2025-12-18
CVE-2025-64466
CVE-2025-64466 is a high-severity LabVIEW vulnerability disclosed by CISA on 2025-12-18. The advisory says an out-of-bounds read in lvre!ExecPostedProcRecPost() can occur when a corrupted VI is opened. In the worst case, this may disclose information or allow arbitrary code execution. Successful exploitation requires a user to open a specially crafted VI file.