CVE-2024-12742 – Deserialization of Untrusted Data Vulnerability in NI G Web Development Software

https://notcve.org/view.php?id=CVE-2024-12742

06 Mar 2025 — A deserialization of untrusted data vulnerability exists in NI G Web Development Software that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects G Web Development Software 2022 Q3 and prior versions. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NI G Web Development. User interaction is required to exploit this vulnerability in that the tar... • https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/deserialization-of-untrusted-data-vulnerability-in-ni-g-web-deve.html • CWE-502: Deserialization of Untrusted Data •