Incorrect Permission Assignment in the TopoGrafix DataPlugin for GPX
CVE-2023-5136

5.5MEDIUM

Key Information:

Vendor

Ni

Status
Topografix Dataplugin For Gpx
Diadem
Veristand
Flexlogger
Vendor
CVE Published:
8 November 2023

What is CVE-2023-5136?

An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker could exploit this vulnerability by getting a user to open a specially crafted data file.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

DIAdem Windows 0 < 2023 Q2

FlexLogger Windows 0 <= 2023 Q4

TopoGrafix DataPlugin for GPX Windows 0 < 2023 Q4

References

https://www.ni.com/en/support/documentation/supplemental/...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.