CVE-2024-6122

An incorrect permission in the installation directory for the shared NI SystemLink Server KeyValueDatabase service may result in information disclosure via local access. This affects NI SystemLink Server 2024 Q1 and prior versions. It also affects NI FlexLogger 2023 Q2 and prior versions which installed this shared service.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ni:systemlink:*:*:*:*:*:*:*:*
cpe:2.3:a:ni:systemlink:2024:q1:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:ni:flexlogger:*:*:*:*:*:*:*:*
cpe:2.3:a:ni:flexlogger:2023:q2:*:*:*:*:*:*

History

10 Sep 2024, 20:43

Type Values Removed Values Added
First Time Ni flexlogger
Ni systemlink
Ni
References () https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/incorrect-default-directory-permissions-for-ni-systemlink-redis-service.html - () https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/incorrect-default-directory-permissions-for-ni-systemlink-redis-service.html - Mitigation, Vendor Advisory
CPE cpe:2.3:a:ni:systemlink:2024:q1:*:*:*:*:*:*
cpe:2.3:a:ni:flexlogger:2023:q2:*:*:*:*:*:*
cpe:2.3:a:ni:systemlink:*:*:*:*:*:*:*:*
cpe:2.3:a:ni:flexlogger:*:*:*:*:*:*:*:*

24 Jul 2024, 12:55

Type Values Removed Values Added
Summary
  • (es) Un permiso incorrecto en el directorio de instalación para el servicio compartido NI SystemLink Server KeyValueDatabase puede resultar en la divulgación de información a través del acceso local. Esto afecta a NI SystemLink Server 2024 Q1 y versiones anteriores. También afecta a NI FlexLogger 2023 Q2 y versiones anteriores que instalaron este servicio compartido.

22 Jul 2024, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-07-22 20:15

Updated : 2024-09-10 20:43


NVD link : CVE-2024-6122

Mitre link : CVE-2024-6122

CVE.ORG link : CVE-2024-6122


JSON object : View

Products Affected

ni

  • flexlogger
  • systemlink
CWE
CWE-276

Incorrect Default Permissions