CVE-2021-38304
7.8 HIGHImproper input validation in the National Instruments NI-PAL driver in versions 20.0.0 and prior may allow a privileged user to potential...
Published: 2021-09-17 · Last updated: 2026-06-17
Severity and scoring
- CVSS
- 7.8 HIGH
- Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-20
Affected products
| Vendor | Product |
|---|---|
| ni | ni-pal |
Description
Improper input validation in the National Instruments NI-PAL driver in versions 20.0.0 and prior may allow a privileged user to potentially enable escalation of privilege via local access.
Source: NVD
References
Related CVEs
Same vendor
- CVE-2026-8036 — Improper input validation in NI-PAL may allow a local authenticated user to access arbitrary system memory, potentially leading to privil... (7.1 HIGH)
- CVE-2026-8035 — Improper input validation in the NI-PAL kernel driver may allow a local authenticated user to cause a denial of service by triggering a c... (7.1 HIGH)
Same CWE
- CVE-2026-12191 — A vulnerability was found in Comma AI Openpilot 0.11 (7.8 HIGH)
- CVE-2026-45013 — ApostropheCMS is an open-source Node.js content management system (8.1 HIGH)
- CVE-2026-54133 — jmespath.php allows users to use JMESPath, software for declaratively specifying how to extract elements from a JSON document, in PHP app... (9.8 CRITICAL)
- CVE-2026-47196 — Quest Bot is an opensource Discord Bot
- CVE-2026-50633 — A JNDI Injection vulnerability has been discovered in Apache CXF's JCA integration module, which can allow for code execution, if an atta... (8.1 HIGH)