Vulnerability Details : CVE-2013-5023
The ActiveX controls in the HelpAsst component in NI Help Links in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allow remote attackers to cause a denial of service by triggering the display of local .chm files.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2013-5023
Probability of exploitation activity in the next 30 days: 1.10%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 83 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2013-5023
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST |
References for CVE-2013-5023
-
http://digital.ni.com/public.nsf/websearch/507DEC9DA57A708186257B3600512623?OpenDocument
Error - Page Error - National InstrumentsVendor Advisory
-
http://digital.ni.com/public.nsf/websearch/5C87A3AA7300868986257B3600501FE6?OpenDocument
Error - Page Error - National InstrumentsVendor Advisory
-
http://digital.ni.com/public.nsf/allkb/E6BC4F119D49A97A86257BD3004FE019?OpenDocument
Error - Page Error - National InstrumentsVendor Advisory
Products affected by CVE-2013-5023
- cpe:2.3:a:ni:labview:*:*:*:*:*:*:*:*
- cpe:2.3:a:ni:labwindows:*:*:*:*:*:*:*:*
- cpe:2.3:a:ni:measurementstudio:*:*:*:*:*:*:*:*
- cpe:2.3:a:ni:teststand:*:*:*:*:*:*:*:*
- cpe:2.3:a:ni:diadem:*:*:*:*:*:*:*:*