CVE-2026-0956
Received Received - Intake
Out-of-Bounds Read in Digilent DASYLab Enables Code Execution

Publication date: 2026-03-13

Last updated on: 2026-03-19

Assigner: National Instruments

Description
There is a memory corruption vulnerability due to an out-of-bounds read when loading a corrupted file in Digilent DASYLab. Β This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted file. This vulnerability affects all versions of Digilent DASYLab.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-13
Last Modified
2026-03-19
Generated
2026-06-16
AI Q&A
2026-03-13
EPSS Evaluated
2026-06-14
NVD
CVE-2026-0956
EUVD
EUVD-2026-12041
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
ni dasylab *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-125 The product reads data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

I don't know

Detection Guidance

I don't know

Executive Summary

This vulnerability is a memory corruption issue caused by an out-of-bounds read when Digilent DASYLab loads a corrupted file.

An attacker can exploit this by tricking a user into opening a specially crafted file, which triggers the vulnerability.

The flaw affects all versions of Digilent DASYLab.

Impact Analysis

Exploitation of this vulnerability may lead to information disclosure or arbitrary code execution on the affected system.

This means an attacker could potentially access sensitive information or take control of the system by executing malicious code.

Mitigation Strategies

To mitigate this vulnerability, avoid opening any files from untrusted or unknown sources in Digilent DASYLab, as exploitation requires a user to open a specially crafted file.

Ensure that users are aware of the risk and do not open suspicious files.

Monitor for updates or patches from Digilent or the vendor and apply them as soon as they become available.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-0956. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart