Memory Corruption Vulnerability in NI LabVIEW Software
CVE-2026-32862

8.5HIGH

Key Information:

Vendor: Ni
Status: Labview
Vendor: CVE Published:; 7 April 2026

What is CVE-2026-32862?

A memory corruption vulnerability exists in the NI LabVIEW environment, specifically within the ResFileFactory::InitResourceMgr() function. This flaw can lead to severe security risks, including information disclosure and arbitrary code execution, when an attacker tricks a user into opening a specially crafted VI file. The vulnerability impacts NI LabVIEW 2026 Q1 (26.1.0) and earlier versions, necessitating immediate attention to mitigate the associated risks.

Affected Version(s)

LabVIEW 0 < 23.0.0

LabVIEW 23.1.0 < 23.3.9

LabVIEW 24.1.0 < 24.3.6

References

https://www.ni.com/en/support/security/available-critical...

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 7, 2026
Vulnerability Reserved
Mar 16, 2026

Credit

Michael Heinzl

CVE-2026-32862 Data

JSON

Ni

What is CVE-2026-32862?

Affected Version(s)

References

CVSS V4

Timeline

Credit