CVE-2013-5022

National Instruments LabWindows/CVI <2012 SP1 - Path Traversal

Title source: llm
STIX 2.1

Description

Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allows remote attackers to create and execute arbitrary files via a full pathname in an argument to the ExportStyle method, in conjunction with file content in the (1) Caption or (2) FormatString property value.

Scores

EPSS 0.0257
EPSS Percentile 83.3%

Details

CWE
CWE-22
Status published
Products (4)
ni/labview < 2012
ni/labwindows < 2012
ni/measurementstudio < 2013
ni/teststand < 2012
Published Aug 06, 2013
Tracked Since Feb 18, 2026